Security Advisory

CVE-2020-11740

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-04-14 12:18:35

Last updated 2024-08-04 11:41:59

Assigner mitre

State PUBLISHED

Description

An issue was discovered in xenoprof in Xen through 4.13.x, allowing guest OS users (without active profiling) to obtain sensitive information about other guests. Unprivileged guests can request to map xenoprof buffers, even if profiling has not been enabled for those guests. These buffers were not scrubbed.

← Browse all CVEs View on cve.org ↗