VYPR

ACRN

by ACRN Project

CVEs (1)

  • CVE-2020-15687HigAug 31, 2020
    risk 0.49cvss 7.5epss 0.02

    Missing access control restrictions in the Hypervisor component of the ACRN Project (v2.0 and v1.6.1) allow a malicious entity, with root access in the Service VM userspace, to abuse the PCIe assign/de-assign Hypercalls via crafted ioctls and payloads. This attack results in a…