Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Missing access control restrictions in the Hypervisor component of the ACRN Project (v2.0 and v1.6.1) allow a malicious entity, with root access in the Service VM userspace, to abuse the PCIe assign/de-assign Hypercalls via crafted ioctls and payloads. This attack results in a corrupt state and Denial of Service (DoS) for previously assigned PCIe devices to the Service VM at runtime.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ACRN Hypervisor 安全漏洞
Vulnerability Description
ACRN是一款用于物联网的开源虚拟机监视器。 ACRN项目的Hypervisor组件中存在安全漏洞,攻击者可以利用此漏洞导致以前分配给服务虚拟机的PCIe设备在运行时处于损坏状态或拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A