Unrated severityNVD Advisory· Published Mar 20, 2024· Updated Nov 4, 2025

VT-d: Failure to quarantine devices in !HVM builds

CVE-2023-46840

Description

Incorrect placement of a preprocessor directive in source code results in logic that doesn't operate as intended when support for HVM guests is compiled out of Xen.

Affected products

osv-coords5 versions
pkg:rpm/opensuse/xen&distro=openSUSE%20Leap%2015.5 pkg:rpm/opensuse/xen&distro=openSUSE%20Tumbleweed pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Micro%205.5 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5 pkg:rpm/suse/xen&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP5
< 4.17.3_04-150500.3.21.1+ 4 more
- (no CPE)range: < 4.17.3_04-150500.3.21.1
- (no CPE)range: < 4.18.0_06-1.1
- (no CPE)range: < 4.17.3_04-150500.3.21.1
- (no CPE)range: < 4.17.3_04-150500.3.21.1
- (no CPE)range: < 4.17.3_04-150500.3.21.1
Xen/Xenv5
Range: consult Xen advisory XSA-450

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

xenbits.xenproject.org/xsa/advisory-450.htmlmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000