目標達成 すべての支援者に感謝 — 100%達成しました!

目標: 1000 CNY · 調達済み: 1336 CNY

100%

CVE-2026-23562— Xen XAPI 权限许可和访问控制问题漏洞

AI Predicted 8.6 Difficulty: Moderate EPSS 0.14% · P4

Affected Version Matrix 1

ベンダープロダクトVersion Rangeステータス
XenXAPIallaffected
新しい脆弱性情報の通知を購読するログインして購読

I. CVE-2026-23562の基本情報

脆弱性情報

脆弱性についてご質問がありますか?Shenlongの分析が参考になるかご確認ください!
Shenlongの10の質問を表示 ↗

高度な大規模言語モデル技術を使用していますが、出力には不正確または古い情報が含まれる可能性があります。Shenlongはデータの正確性を確保するよう努めていますが、実際の状況に基づいて検証・判断してください。

脆弱性タイトル
Multiple RBAC issues in XAPI
ソース: NVD (National Vulnerability Database)
脆弱性説明
[This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE.] XAPI can configure different users with different roles, using Role Based Access Control. For more details, see: https://docs.xenserver.com/en-us/xencenter/current-release/rbac-overview.html#rbac-roles The pool-admin role is fully privileged. Notably, users with this role can also SSH into the host as root. The other administrator roles are pool-operator, vm-power-admin and vm-admin, each of which are authorised to configure and manage various aspects of the system. Some settings are inadequately restricted, and can be set by a lower privilege of administrator than expected. * CVE-2026-23559: A vm-admin can set VBD.other_config:backend-local and turn arbitrary files in dom0 into VDIs (virtual disks) and give said disks to a VM they control. This is an arbitrary read and/or modify of files in dom0. * CVE-2026-23560: A vm-admin can set VM.other-config:is_system_domain and mark a VM as a system domain. System domains are ignored and left running during certain other host/pool operations, and may be hidden from view in tooling. * CVE-2026-23561: A vm-admin can set VM.other_config:storage_driver_domain and mark a VM as the storage domain for a particular host storage connection (PBD). Shutting down the VM can cause the PBD to be erroneously marked as unplugged when it is not. * CVE-2026-23562: Configuration of PCI passthrough is normally restricted to the pool-admin role. However one API was missing this check, allowing a vm-admin access to unintended host hardware. * CVE-2026-42486: A vm-admin can set the VM.platform:hvm_serial parameter, which should be restricted to the pool-admin role, as it can allow arbitrary dom0 file write.
ソース: NVD (National Vulnerability Database)
CVSS情報
N/A
ソース: NVD (National Vulnerability Database)
脆弱性タイプ
带着不必要的权限执行
ソース: NVD (National Vulnerability Database)
脆弱性タイトル
Xen XAPI 权限许可和访问控制问题漏洞
ソース: CNNVD (China National Vulnerability Database)
脆弱性説明
Xen xapi是Xen组织开源的一个虚拟机管理API服务。 Xen XAPI存在权限许可和访问控制问题漏洞,该漏洞源于API缺少PCI passthrough配置权限检查,可能导致vm-admin角色访问未预期的宿主机硬件。
ソース: CNNVD (China National Vulnerability Database)
CVSS情報
N/A
ソース: CNNVD (China National Vulnerability Database)
脆弱性タイプ
N/A
ソース: CNNVD (China National Vulnerability Database)

影響を受ける製品

ベンダープロダクト影響を受けるバージョンCPE購読
XenXAPI all -

II. CVE-2026-23562の公開POC

#POC説明ソースリンクShenlongリンク
AI生成POCプレミアム

公開POCは見つかりませんでした。

ログインしてAI POCを生成

III. CVE-2026-23562のインテリジェンス情報

登录查看更多情报信息。

CVE-2026-23562 厂商安全公告 (1)

Same Patch Batch · Xen · 2026-07-09 · 11 CVEs total

CVE-2026-42486Multiple RBAC issues in XAPI
CVE-2026-23560Multiple RBAC issues in XAPI
CVE-2026-23561Multiple RBAC issues in XAPI
CVE-2026-23559Multiple RBAC issues in XAPI
CVE-2026-23556oxenstored keeps quota related use counts across domain destruction
CVE-2025-58146XAPI UTF-8 string handling
CVE-2025-58151varstored: TOCTOU issues with mapped guest memory
CVE-2025-27464WinPVDrivers: Excessive permissions on user-exposed devices
CVE-2025-27462WinPVDrivers: Excessive permissions on user-exposed devices
CVE-2025-27463WinPVDrivers: Excessive permissions on user-exposed devices

IV. 関連脆弱性

V. CVE-2026-23562へのコメント

まだコメントはありません


コメントを残す