A flaw was found in the way KVM... CVE-2019-3887

4.7 AV AC AU C I A
发布: 2019-04-09
修订: 2023-02-12

A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0's APIC register values via L2 guest, when 'virtualize x2APIC mode' is enabled. A guest could use this flaw to potentially crash the host kernel resulting in DoS issue. Kernel versions from 4.16 and newer are vulnerable to this issue.

0%
暂无可用Exp或PoC
当前有19条受影响产品信息