Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The x86 emulator in KVM 83 does not use the Current Privilege Level (CPL) and I/O Privilege Level (IOPL) in determining the memory access available to CPL3 code, which allows guest OS users to cause a denial of service (guest OS crash) or gain privileges on the guest OS by leveraging access to a (1) IO port or (2) MMIO region, a related issue to CVE-2010-0306.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Linux KVM 83 x86算法拒绝服务漏洞和权限提升漏洞
Vulnerability Description
KVM 83上的 x86算法没有正确的使用Current Privilege Level (CPL) 和 I/O Privilege Level (IOPL)来确定CPL3代码的内存访问可用性,允许操作系统的来宾用户可以通过访问(1) IO port 或 (2) MMIO域,导致服务拒绝(来宾用户系统崩溃)或来宾系统的特权提升。
CVSS Information
N/A
Vulnerability Type
N/A