Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

xen — Vulnerabilities & Security Advisories 102

All 102 CVE vulnerabilities found in xen, with AI-generated Chinese analysis, references, and POCs.

Vendor: Xen

CVE IDTitleCVSSSeverityPublished
CVE-2026-23555 Xenstored DoS by unprivileged domain 7.7AIHighAI2026-03-23
CVE-2026-23554 Use after free of paging structures in EPT 6.8AIMediumAI2026-03-23
CVE-2026-23553 x86: incomplete IBPB for vCPU isolation 7.5AIHighAI2026-01-28
CVE-2025-58150 x86: buffer overrun with shadow paging + tracing 8.8AIHighAI2026-01-28
CVE-2025-58149 Incorrect removal of permissions on PCI device unplug 9.1 -2025-10-31
CVE-2025-58147 x86: Incorrect input sanitisation in Viridian hypercalls 7.8 -2025-10-31
CVE-2025-58148 x86: Incorrect input sanitisation in Viridian hypercalls 7.8 -2025-10-31
CVE-2025-58145 Arm issues with page refcounting 7.1AIHighAI2025-09-11
CVE-2025-58144 Arm issues with page refcounting 7.1AIHighAI2025-09-11
CVE-2025-27466 Mutiple vulnerabilities in the Viridian interface 5.1AIMediumAI2025-09-11
CVE-2025-58143 Mutiple vulnerabilities in the Viridian interface 5.1AIMediumAI2025-09-11
CVE-2025-58142 Mutiple vulnerabilities in the Viridian interface 5.1AIMediumAI2025-09-11
CVE-2025-1713 deadlock potential with VT-d and legacy PCI device pass-through 6.5AIMediumAI2025-07-17
CVE-2025-27465 x86: Incorrect stubs exception handling for flags recovery 6.2AIMediumAI2025-07-16
CVE-2024-31144 Xapi: Metadata injection attack against backup/restore functionality 7.1AIHighAI2025-02-14
CVE-2024-2201 CVE-2024-2201 6.2AIMediumAI2024-12-19
CVE-2024-45819 libxl leaks data to PVH guests via ACPI tables 7.1 -2024-12-19
CVE-2024-45818 Deadlock in x86 HVM standard VGA handling 6.5 -2024-12-19
CVE-2024-45817 x86: Deadlock in vlapic_error() 5.5AIMediumAI2024-09-25
CVE-2024-31146 PCI device pass-through with shared resources 8.1AIHighAI2024-09-25
CVE-2024-31145 error handling in x86 IOMMU identity mapping 7.1AIHighAI2024-09-25
CVE-2024-31143 double unlock in x86 guest IRQ handling 5.5AIMediumAI2024-07-18
CVE-2024-31142 x86: Incorrect logic for BTC/SRSO mitigations 6.2 -2024-05-16
CVE-2023-46842 x86 HVM hypercalls may trigger Xen bug check 7.5AIHighAI2024-05-16
CVE-2023-46841 x86: shadow stack vs exceptions from emulation stubs 7.8AIHighAI2024-03-20
CVE-2023-46840 VT-d: Failure to quarantine devices in !HVM builds 7.8AIHighAI2024-03-20
CVE-2023-46839 pci: phantom functions assigned to incorrect contexts 5.9 -2024-03-20
CVE-2023-46837 arm32: The cache may not be properly cleaned/invalidated (take two) 6.1AIMediumAI2024-01-05
CVE-2023-46836 x86: BTC/SRSO fixes not fully effective 9.1AICriticalAI2024-01-05
CVE-2023-46835 x86/AMD: mismatch in IOMMU quarantine page table levels 8.4AIHighAI2024-01-05

All 102 known CVE vulnerabilities affecting xen with full Chinese analysis, references, and POCs where available.