CVE-2019-3887medium
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
A flaw was found in the way KVM hypervisor handled x2APIC Machine Specific Rregister (MSR) access with nested(=1) virtualization enabled. In that, L1 guest could access L0's APIC register values via L2 guest, when 'virtualize x2APIC mode' is enabled. A guest could use this flaw to potentially crash the host kernel resulting in DoS issue. Kernel versions from 4.16 and newer are vulnerable to this issue.
References
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3887
http://www.securityfocus.com/bid/107850
https://usn.ubuntu.com/3980-1/
https://usn.ubuntu.com/3979-1/
https://usn.ubuntu.com/3980-2/
Details
Source: MITRE
Published: 2019-04-09
Updated: 2021-11-02
Type: CWE-863
Risk Information
CVSS v2
Base Score: 4.7
Vector: AV:L/AC:M/Au:N/C:N/I:N/A:C
Impact Score: 6.9
Exploitability Score: 3.4
Severity: MEDIUM
CVSS v3
Base Score: 5.6
Vector: CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H
Impact Score: 4
Exploitability Score: 1.1
Severity: MEDIUM
Vulnerable Software
Configuration 1
OR
Configuration 2
OR
Configuration 3
OR
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
Configuration 4
OR
cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:8.1:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:8.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_eus:8.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_for_real_time:8:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv:8:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_for_real_time_for_nfv_tus:8.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_for_real_time_tus:8.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_aus:8.4:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.2:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux_server_tus:8.4:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 145668 | CentOS 8 : kernel (CESA-2019:2703) | Nessus | CentOS Local Security Checks | high |
| 128859 | RHEL 8 : kernel-rt (RHSA-2019:2741) | Nessus | Red Hat Local Security Checks | high |
| 128845 | Oracle Linux 8 : kernel (ELSA-2019-2703) | Nessus | Oracle Linux Local Security Checks | high |
| 128665 | RHEL 8 : kernel (RHSA-2019:2703) | Nessus | Red Hat Local Security Checks | high |
| 126115 | Photon OS 3.0: Linux PHSA-2019-3.0-0015 | Nessus | PhotonOS Local Security Checks | high |
| 125140 | Ubuntu 18.04 LTS : Linux kernel (HWE) vulnerabilities (USN-3980-2) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) | Nessus | Ubuntu Local Security Checks | high |
| 125139 | Ubuntu 18.10 : Linux kernel vulnerabilities (USN-3980-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) | Nessus | Ubuntu Local Security Checks | high |
| 125138 | Ubuntu 19.04 : Linux kernel vulnerabilities (USN-3979-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout) | Nessus | Ubuntu Local Security Checks | critical |
| 124520 | Fedora 30 : kernel / kernel-headers / kernel-tools (2019-982b97f553) | Nessus | Fedora Local Security Checks | medium |
| 124044 | Fedora 28 : kernel / kernel-headers / kernel-tools (2019-ce2933b003) | Nessus | Fedora Local Security Checks | medium |
| 124043 | Fedora 29 : kernel / kernel-headers / kernel-tools (2019-94dc902948) | Nessus | Fedora Local Security Checks | medium |