CVE-2011-3131 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.6 UNKNOWN	LOCAL	LOW		AV:L/AC:L/Au:S/C:N/I:N/A:C
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 17%

Vendor	Product	Version
xen	xen	𝑥 ≤ 4.1.1

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

xen

bullseye	4.14.6-1 fixed
bullseye (security)	4.14.5+94-ge49571868d-1 fixed
bookworm	4.17.3+10-g091466ba55-1~deb12u1 fixed
sid	4.17.3+36-g54dacb5c02-1 fixed
trixie	4.17.3+36-g54dacb5c02-1 fixed

Ubuntu Releases

Ubuntu Product

Codename

xen

saucy	not-affected
raring	not-affected
quantal	not-affected
precise	not-affected
oneiric	Fixed 4.1.1-2ubuntu4.4 released
natty	dne
maverick	dne
lucid	dne
hardy	dne

xen-3.1

saucy	dne
raring	dne
quantal	dne
precise	dne
oneiric	dne
natty	dne
maverick	dne
lucid	dne
hardy	ignored

xen-3.2

saucy	dne
raring	dne
quantal	dne
precise	dne
oneiric	dne
natty	dne
maverick	dne
lucid	dne
hardy	ignored

xen-3.3

saucy	dne
raring	dne
quantal	dne
precise	dne
oneiric	dne
natty	ignored
maverick	ignored
lucid	ignored
hardy	dne

Known Exploits!

Common Weakness Enumeration

CWE-399 -

References

http://old-list-archives.xen.org/archives/html/xen-devel/2011-06/msg01106.html

http://old-list-archives.xen.org/archives/html/xen-devel/2011-08/msg00450.html

http://secunia.com/advisories/45622

http://secunia.com/advisories/51468

http://www.debian.org/security/2012/dsa-2582

http://www.securityfocus.com/bid/49146

http://xenbits.xen.org/hg/staging/xen-4.1-testing.hg/rev/84e3706df07a

http://old-list-archives.xen.org/archives/html/xen-devel/2011-06/msg01106.html

http://old-list-archives.xen.org/archives/html/xen-devel/2011-08/msg00450.html

http://secunia.com/advisories/45622

http://secunia.com/advisories/51468

http://www.debian.org/security/2012/dsa-2582

http://www.securityfocus.com/bid/49146

http://xenbits.xen.org/hg/staging/xen-4.1-testing.hg/rev/84e3706df07a