目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

CVE-2026-23560— Xen XAPI 权限许可和访问控制问题漏洞

AI 预测 8.1 利用难度: 较易 EPSS 0.14% · P4

影响版本矩阵 1

厂商产品版本范围状态
XenXAPIallaffected
获取后续新漏洞提醒登录后订阅

一、 漏洞 CVE-2026-23560 基础信息

漏洞信息

对漏洞内容有疑问?看看神龙的深度分析是否有帮助!
查看神龙十问 ↗

尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。

Vulnerability Title
Multiple RBAC issues in XAPI
来源: 美国国家漏洞数据库 NVD
Vulnerability Description
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] XAPI can configure different users with different roles, using Role Based Access Control. For more details, see: https://docs.xenserver.com/en-us/xencenter/current-release/rbac-overview.html#rbac-roles The pool-admin role is fully privileged. Notably, users with this role can also SSH into the host as root. The other administrator roles are pool-operator, vm-power-admin and vm-admin, each of which are authorised to configure and manage various aspects of the system. Some settings are inadequately restricted, and can be set by a lower privilege of administrator than expected. * CVE-2026-23559: A vm-admin can set VBD.other_config:backend-local and turn arbitrary files in dom0 into VDIs (virtual disks) and give said disks to a VM they control. This is an arbitrary read and/or modify of files in dom0. * CVE-2026-23560: A vm-admin can set VM.other-config:is_system_domain and mark a VM as a system domain. System domains are ignored and left running during certain other host/pool operations, and may be hidden from view in tooling. * CVE-2026-23561: A vm-admin can set VM.other_config:storage_driver_domain and mark a VM as the storage domain for a particular host storage connection (PBD). Shutting down the VM can cause the PBD to be erroneously marked as unplugged when it is not. * CVE-2026-23562: Configuration of PCI passthrough is normally restricted to the pool-admin role. However one API was missing this check, allowing a vm-admin access to unintended host hardware. * CVE-2026-42486: A vm-admin can set the VM.platform:hvm_serial parameter, which should be restricted to the pool-admin role, as it can allow arbitrary dom0 file write.
来源: 美国国家漏洞数据库 NVD
CVSS Information
N/A
来源: 美国国家漏洞数据库 NVD
Vulnerability Type
带着不必要的权限执行
来源: 美国国家漏洞数据库 NVD
Vulnerability Title
Xen XAPI 权限许可和访问控制问题漏洞
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Description
Xen xapi是Xen组织开源的一个虚拟机管理API服务。 Xen XAPI存在权限许可和访问控制问题漏洞,该漏洞源于设置限制不当,可能导致vm-admin设置VM.other-config:is_system_domain参数,将VM标记为系统域。系统域在某些主机/池操作期间被忽略并保持运行,可能在工具中隐藏。
来源: 中国国家信息安全漏洞库 CNNVD
CVSS Information
N/A
来源: 中国国家信息安全漏洞库 CNNVD
Vulnerability Type
N/A
来源: 中国国家信息安全漏洞库 CNNVD

受影响产品

厂商产品影响版本CPE订阅
XenXAPI all -

二、漏洞 CVE-2026-23560 的公开POC

#POC 描述源链接神龙链接
AI 生成 POC高级

未找到公开 POC。

登录以生成 AI POC

三、漏洞 CVE-2026-23560 的情报信息

登录查看更多情报信息。

CVE-2026-23560 厂商安全公告 (1)

同批安全公告 · Xen · 2026-07-09 · 共 11 条

CVE-2026-42486Xen XAPI 权限许可和访问控制问题漏洞
CVE-2026-23562Xen XAPI 权限许可和访问控制问题漏洞
CVE-2026-23561Xen XAPI 权限许可和访问控制问题漏洞
CVE-2026-23559Xen XAPI 权限许可和访问控制问题漏洞
CVE-2026-23556Xen oxenstored 权限许可和访问控制问题漏洞
CVE-2025-58146Xen 安全漏洞
CVE-2025-58151Xen varstored 竞争条件问题漏洞
CVE-2025-27464Xen 安全漏洞
CVE-2025-27462Xen 安全漏洞
CVE-2025-27463Xen 安全漏洞

IV. Related Vulnerabilities

V. Comments for CVE-2026-23560

暂无评论


发表评论