Xen 4.1.1 and earlier allows local guest OS kernels with control of a PCI[E] device to cause a denial of service (CPU consumption and host hang) via many crafted DMA requests that are denied by the IOMMU, which triggers a livelock.
Base Score: 4.6
Impact Score: 6.9
Exploitability Score: 3.1
cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:* versions up to 4.1.1 (inclusive)
View all (8 total)