VYPR
Unrated severityNVD Advisory· Published Aug 14, 2008· Updated Jun 16, 2026

CVE-2008-3687

CVE-2008-3687

Description

Heap-based buffer overflow in the flask_security_label function in Xen 3.3, when compiled with the XSM:FLASK module, allows unprivileged domain users (domU) to execute arbitrary code via the flask_op hypercall.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Xen/Xen2 versions
    cpe:2.3:a:xen:xen:3.3:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:xen:xen:3.3:*:*:*:*:*:*:*
    • (no CPE)range: = 3.3
  • cpe:2.3:a:xen:xen_flask_module:*:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.