CVE-2016-10025

Published: Jan 26, 2017Modified: May 13, 2026

5.5

Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Exploitability: 1.8 / Impact: 3.6

Source: NVD

Description

VMFUNC emulation in Xen 4.6.x through 4.8.x on x86 systems using AMD virtualization extensions (aka SVM) allows local HVM guest OS users to cause a denial of service (hypervisor crash) by leveraging a missing NULL pointer check.

Affected (11)

Products: Xen: Xen · Citrix: Xenserver

1 product

1 product

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Xen Xen	Version 4.6.0
Xen Xen	Version 4.6.1
Xen Xen	Version 4.6.3
Xen Xen	Version 4.6.4
Xen Xen	Version 4.7.0
Xen Xen	Version 4.7.1
Xen Xen	Version 4.8.0

Configuration B

4 vulnerable

Vulnerable Software	Affected Versions
Citrix Xenserver	Version 6.0.2
Citrix Xenserver	Version 6.2.0
Citrix Xenserver	Version 6.5
Citrix Xenserver	Version 7.0

Related CWEs

CWE-476

NULL Pointer Dereference

The product dereferences a pointer that it expects to be valid but is NULL.

References (8)

http://www.securityfocus.com/bid/95026

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037518

Source: cve@mitre.org

Third Party AdvisoryVDB Entry

http://xenbits.xen.org/xsa/advisory-203.html

Source: cve@mitre.org

PatchVendor Advisory

https://support.citrix.com/article/CTX219378

Source: cve@mitre.org

PatchThird Party Advisory

http://www.securityfocus.com/bid/95026

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securitytracker.com/id/1037518

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://xenbits.xen.org/xsa/advisory-203.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://support.citrix.com/article/CTX219378

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

Timeline

No history available yet.