VYPR
Medium severity6.5NVD Advisory· Published Jul 5, 2017· Updated Jun 17, 2026

CVE-2017-10923

CVE-2017-10923

Description

Xen through 4.8.x does not validate a vCPU array index upon the sending of an SGI, which allows guest OS users to cause a denial of service (hypervisor crash), aka XSA-225.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

9
  • Xen/Xen9 versions
    cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:*
    • cpe:2.3:o:xen:xen:4.6.1:*:*:*:*:*:*:*
    • cpe:2.3:o:xen:xen:4.6.2:*:*:*:*:*:*:*
    • cpe:2.3:o:xen:xen:4.6.4:*:*:*:*:*:*:*
    • cpe:2.3:o:xen:xen:4.6.5:*:*:*:*:*:*:*
    • cpe:2.3:o:xen:xen:4.7.1:*:*:*:*:*:*:*
    • cpe:2.3:o:xen:xen:4.8.0:*:*:*:*:*:*:*
    • cpe:2.3:o:xen:xen:4.8.1:*:*:*:*:*:*:*
    • (no CPE)range: <=4.8.x

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.