CVE-2016-9382 - Vulnerability Details

Vendors	Products
Citrix	Xenserver
Xen	Xen

Link	Providers
http://www.securityfocus.com/bid/94470
http://www.securitytracker.com/id/1037341
http://xenbits.xen.org/xsa/advisory-192.html
https://nvd.nist.gov/vuln/detail/CVE-2016-9382
https://security.gentoo.org/glsa/201612-56
https://support.citrix.com/article/CTX218775
https://www.cve.org/CVERecord?id=CVE-2016-9382

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2016-11-22T00:00:00", "descriptions": [{"lang": "en", "value": "Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-06-30T16:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "94470", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/94470"}, {"name": "GLSA-201612-56", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "https://security.gentoo.org/glsa/201612-56"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://xenbits.xen.org/xsa/advisory-192.html"}, {"name": "1037341", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1037341"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.citrix.com/article/CTX218775"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2016-9382", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "94470", "refsource": "BID", "url": "http://www.securityfocus.com/bid/94470"}, {"name": "GLSA-201612-56", "refsource": "GENTOO", "url": "https://security.gentoo.org/glsa/201612-56"}, {"name": "http://xenbits.xen.org/xsa/advisory-192.html", "refsource": "CONFIRM", "url": "http://xenbits.xen.org/xsa/advisory-192.html"}, {"name": "1037341", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1037341"}, {"name": "https://support.citrix.com/article/CTX218775", "refsource": "CONFIRM", "url": "https://support.citrix.com/article/CTX218775"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T02:50:36.977Z"}, "title": "CVE Program Container", "references": [{"name": "94470", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/94470"}, {"name": "GLSA-201612-56", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "https://security.gentoo.org/glsa/201612-56"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://xenbits.xen.org/xsa/advisory-192.html"}, {"name": "1037341", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1037341"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.citrix.com/article/CTX218775"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2016-9382", "datePublished": "2017-01-23T21:00:00", "dateReserved": "2016-11-17T00:00:00", "dateUpdated": "2024-08-06T02:50:36.977Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

datePublic : 2016-11-22T00:00:00 (string)

descriptions : [ »

0 : { »

lang : en (string)

value : Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2017-06-30T16:57:01 (string)

orgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

shortName : mitre (string)

}

references : [ »

0 : { »

name : 94470 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

]

url : http://www.securityfocus.com/bid/94470 (string)

}

1 : { »

name : GLSA-201612-56 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_GENTOO (string)

]

url : https://security.gentoo.org/glsa/201612-56 (string)

}

2 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://xenbits.xen.org/xsa/advisory-192.html (string)

}

3 : { »

name : 1037341 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

]

url : http://www.securitytracker.com/id/1037341 (string)

}

4 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : https://support.citrix.com/article/CTX218775 (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : cve@mitre.org (string)

ID : CVE-2016-9382 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : 94470 (string)

refsource : BID (string)

url : http://www.securityfocus.com/bid/94470 (string)

}

1 : { »

name : GLSA-201612-56 (string)

refsource : GENTOO (string)

url : https://security.gentoo.org/glsa/201612-56 (string)

}

2 : { »

name : http://xenbits.xen.org/xsa/advisory-192.html (string)

refsource : CONFIRM (string)

url : http://xenbits.xen.org/xsa/advisory-192.html (string)

}

3 : { »

name : 1037341 (string)

refsource : SECTRACK (string)

url : http://www.securitytracker.com/id/1037341 (string)

}

4 : { »

name : https://support.citrix.com/article/CTX218775 (string)

refsource : CONFIRM (string)

url : https://support.citrix.com/article/CTX218775 (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-06T02:50:36.977Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

name : 94470 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_BID (string)

2 : x_transferred (string)

]

url : http://www.securityfocus.com/bid/94470 (string)

}

1 : { »

name : GLSA-201612-56 (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_GENTOO (string)

2 : x_transferred (string)

]

url : https://security.gentoo.org/glsa/201612-56 (string)

}

2 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://xenbits.xen.org/xsa/advisory-192.html (string)

}

3 : { »

name : 1037341 (string)

tags : [ »

0 : vdb-entry (string)

1 : x_refsource_SECTRACK (string)

2 : x_transferred (string)

]

url : http://www.securitytracker.com/id/1037341 (string)

}

4 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : https://support.citrix.com/article/CTX218775 (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : 8254265b-2729-46b6-b9e3-3dfca2d5bfca (string)

assignerShortName : mitre (string)

cveId : CVE-2016-9382 (string)

datePublished : 2017-01-23T21:00:00 (string)

dateReserved : 2016-11-17T00:00:00 (string)

dateUpdated : 2024-08-06T02:50:36.977Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:*", "matchCriteriaId": "550223A9-B9F1-440A-8C25-9F0F76AF7301", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "FC734D58-96E5-4DD2-8781-F8E0ADB96462", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "62CEC1BF-1922-410D-BCBA-C58199F574C7", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "923F2C2B-4A65-4823-B511-D0FEB7C7FAB2", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "C1A24DED-B2EC-4D9C-9FA4-DD37EF3E3BFC", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "0D532B60-C8DD-4A2F-9D05-E574D23EB754", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "5D83CA8B-8E49-45FA-8FAB-C15052474542", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "27537DF5-7E0F-463F-BA87-46E329EE07AC", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "3EA4F978-9145-4FE6-B4F9-15207E52C40A", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "22A995FD-9B7F-4DF0-BECF-4B086E470F1E", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:*", "matchCriteriaId": "219597E2-E2D7-4647-8A7C-688B96300158", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "65E55950-EACA-4209-B2A1-E09026FC6006", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "8F0AF8EF-6FF6-4E22-B16E-82C9F90C6B00", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "47640819-FC43-49ED-8A77-728C3D7255B3", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:*", "matchCriteriaId": "2448537F-87AD-45C1-9FB0-7A49CA31BD76", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "E36B2265-70E1-413B-A7CF-79D39E9ADCFB", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.4:*:*:*:*:*:*:*", "matchCriteriaId": "37148A72-BE20-45C5-8589-2309ED84D08C", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.2.5:*:*:*:*:*:*:*", "matchCriteriaId": "FB736B4C-325A-4B27-8C8A-15E60B8A8C82", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "BF948E6A-07BE-4C7D-8A98-002E89D35F4D", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:*", "matchCriteriaId": "C0E23B94-1726-4F63-84BB-8D83FAB156D7", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.2:*:*:*:*:*:*:*", "matchCriteriaId": "C76124AB-4E3D-4BE0-AAEA-7FC05868E2FB", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.3:*:*:*:*:*:*:*", "matchCriteriaId": "F30B5EF5-0AE8-420B-A103-B1B25A372F09", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.3.4:*:*:*:*:*:*:*", "matchCriteriaId": "F784EF07-DBEC-492A-A0F4-F9F7B2551A0B", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "1044792C-D544-457C-9391-4F3B5BAB978D", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "FBD9AD01-50B7-4951-8A73-A6CF4801A487", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "89AA8FD5-E997-4F0D-AFB6-FFBE0073BA5D", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.3:*:*:*:*:*:*:*", "matchCriteriaId": "75615D84-9CA1-456C-816D-768E37B074A4", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.4.4:*:*:*:*:*:*:*", "matchCriteriaId": "7AB87384-A1F8-4136-A242-441C655D9364", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "90CCECD0-C0F9-45A8-8699-64428637EBCA", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.5.1:*:*:*:*:*:*:*", "matchCriteriaId": "F0ED340C-6746-471E-9F2D-19D62D224B7A", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.5.2:*:*:*:*:*:*:*", "matchCriteriaId": "99BD7C4F-DE4C-4508-B20D-46A94B616C5B", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.5.3:*:*:*:*:*:*:*", "matchCriteriaId": "3374F1FB-70F9-4EBC-837B-0D42282E3E5F", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.5.5:*:*:*:*:*:*:*", "matchCriteriaId": "37DA3D28-EAE7-4EC9-977C-444A46CBD9C7", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "4B6F7CE9-C409-4D88-9A99-B21420633F45", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.6.1:*:*:*:*:*:*:*", "matchCriteriaId": "B814C381-4991-495A-B530-7543F977B346", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.6.3:*:*:*:*:*:*:*", "matchCriteriaId": "14442705-D243-4250-A486-E70989946D73", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.6.4:*:*:*:*:*:*:*", "matchCriteriaId": "BBB7BAFE-9CB4-40D2-908C-55307728116F", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.7.0:*:*:*:*:*:*:*", "matchCriteriaId": "F1DD0255-9127-4C7F-9C02-42198820363E", "vulnerable": true}, {"criteria": "cpe:2.3:o:xen:xen:4.7.1:*:*:*:*:*:*:*", "matchCriteriaId": "8FDFDDA0-51D2-4995-9B4D-48047C940FC5", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:citrix:xenserver:6.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "5FCF191B-971A-4945-AB14-08091689BE2F", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xenserver:6.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "BCEA97B9-A443-4F87-81B4-B3F0E94AC18E", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xenserver:6.5:*:*:*:*:*:*:*", "matchCriteriaId": "56434D13-7A7B-495C-A135-2688C706A065", "vulnerable": true}, {"criteria": "cpe:2.3:a:citrix:xenserver:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "405F950F-0772-41A3-8B72-B67151CC1376", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode."}, {"lang": "es", "value": "Xen 4.0.x hasta la versi\u00f3n 4.7.x administra mal los conmutadores de tareas x86 para el modo VM86, lo que permite a usuarios locales del SO invitado x86 HVM de 32-bit obtener privilegios o provocar una denegaci\u00f3n de servicio (ca\u00edda del SO invitado) aprovechando un sistema operativo invitado que utiliza conmutaci\u00f3n de tareas de hardware y permite iniciar una una nueva tarea en modo VM86."}], "id": "CVE-2016-9382", "lastModified": "2025-04-20T01:37:25.860", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV30": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "LOCAL", "availabilityImpact": "HIGH", "baseScore": 7.8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "version": "3.0"}, "exploitabilityScore": 1.8, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2017-01-23T21:59:02.830", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/94470"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1037341"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://xenbits.xen.org/xsa/advisory-192.html"}, {"source": "cve@mitre.org", "url": "https://security.gentoo.org/glsa/201612-56"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory"], "url": "https://support.citrix.com/article/CTX218775"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/94470"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1037341"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://xenbits.xen.org/xsa/advisory-192.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://security.gentoo.org/glsa/201612-56"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory"], "url": "https://support.citrix.com/article/CTX218775"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:xen:xen:4.0.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 550223A9-B9F1-440A-8C25-9F0F76AF7301 (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:xen:xen:4.0.1:*:*:*:*:*:*:* (string)

matchCriteriaId : FC734D58-96E5-4DD2-8781-F8E0ADB96462 (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:xen:xen:4.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 62CEC1BF-1922-410D-BCBA-C58199F574C7 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:xen:xen:4.0.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 923F2C2B-4A65-4823-B511-D0FEB7C7FAB2 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:xen:xen:4.0.4:*:*:*:*:*:*:* (string)

matchCriteriaId : C1A24DED-B2EC-4D9C-9FA4-DD37EF3E3BFC (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:xen:xen:4.1.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 0D532B60-C8DD-4A2F-9D05-E574D23EB754 (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:xen:xen:4.1.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 5D83CA8B-8E49-45FA-8FAB-C15052474542 (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:xen:xen:4.1.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 27537DF5-7E0F-463F-BA87-46E329EE07AC (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:xen:xen:4.1.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 3EA4F978-9145-4FE6-B4F9-15207E52C40A (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:xen:xen:4.1.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 22A995FD-9B7F-4DF0-BECF-4B086E470F1E (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:xen:xen:4.1.5:*:*:*:*:*:*:* (string)

matchCriteriaId : 219597E2-E2D7-4647-8A7C-688B96300158 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:xen:xen:4.1.6.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 65E55950-EACA-4209-B2A1-E09026FC6006 (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:xen:xen:4.2.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 8F0AF8EF-6FF6-4E22-B16E-82C9F90C6B00 (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:xen:xen:4.2.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 47640819-FC43-49ED-8A77-728C3D7255B3 (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:xen:xen:4.2.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 2448537F-87AD-45C1-9FB0-7A49CA31BD76 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:xen:xen:4.2.3:*:*:*:*:*:*:* (string)

matchCriteriaId : E36B2265-70E1-413B-A7CF-79D39E9ADCFB (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:xen:xen:4.2.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 37148A72-BE20-45C5-8589-2309ED84D08C (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:xen:xen:4.2.5:*:*:*:*:*:*:* (string)

matchCriteriaId : FB736B4C-325A-4B27-8C8A-15E60B8A8C82 (string)

vulnerable : true (boolean)

}

18 : { »

criteria : cpe:2.3:o:xen:xen:4.3.0:*:*:*:*:*:*:* (string)

matchCriteriaId : BF948E6A-07BE-4C7D-8A98-002E89D35F4D (string)

vulnerable : true (boolean)

}

19 : { »

criteria : cpe:2.3:o:xen:xen:4.3.1:*:*:*:*:*:*:* (string)

matchCriteriaId : C0E23B94-1726-4F63-84BB-8D83FAB156D7 (string)

vulnerable : true (boolean)

}

20 : { »

criteria : cpe:2.3:o:xen:xen:4.3.2:*:*:*:*:*:*:* (string)

matchCriteriaId : C76124AB-4E3D-4BE0-AAEA-7FC05868E2FB (string)

vulnerable : true (boolean)

}

21 : { »

criteria : cpe:2.3:o:xen:xen:4.3.3:*:*:*:*:*:*:* (string)

matchCriteriaId : F30B5EF5-0AE8-420B-A103-B1B25A372F09 (string)

vulnerable : true (boolean)

}

22 : { »

criteria : cpe:2.3:o:xen:xen:4.3.4:*:*:*:*:*:*:* (string)

matchCriteriaId : F784EF07-DBEC-492A-A0F4-F9F7B2551A0B (string)

vulnerable : true (boolean)

}

23 : { »

criteria : cpe:2.3:o:xen:xen:4.4.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 1044792C-D544-457C-9391-4F3B5BAB978D (string)

vulnerable : true (boolean)

}

24 : { »

criteria : cpe:2.3:o:xen:xen:4.4.1:*:*:*:*:*:*:* (string)

matchCriteriaId : FBD9AD01-50B7-4951-8A73-A6CF4801A487 (string)

vulnerable : true (boolean)

}

25 : { »

criteria : cpe:2.3:o:xen:xen:4.4.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 89AA8FD5-E997-4F0D-AFB6-FFBE0073BA5D (string)

vulnerable : true (boolean)

}

26 : { »

criteria : cpe:2.3:o:xen:xen:4.4.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 75615D84-9CA1-456C-816D-768E37B074A4 (string)

vulnerable : true (boolean)

}

27 : { »

criteria : cpe:2.3:o:xen:xen:4.4.4:*:*:*:*:*:*:* (string)

matchCriteriaId : 7AB87384-A1F8-4136-A242-441C655D9364 (string)

vulnerable : true (boolean)

}

28 : { »

criteria : cpe:2.3:o:xen:xen:4.5.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 90CCECD0-C0F9-45A8-8699-64428637EBCA (string)

vulnerable : true (boolean)

}

29 : { »

criteria : cpe:2.3:o:xen:xen:4.5.1:*:*:*:*:*:*:* (string)

matchCriteriaId : F0ED340C-6746-471E-9F2D-19D62D224B7A (string)

vulnerable : true (boolean)

}

30 : { »

criteria : cpe:2.3:o:xen:xen:4.5.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 99BD7C4F-DE4C-4508-B20D-46A94B616C5B (string)

vulnerable : true (boolean)

}

31 : { »

criteria : cpe:2.3:o:xen:xen:4.5.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 3374F1FB-70F9-4EBC-837B-0D42282E3E5F (string)

vulnerable : true (boolean)

}

32 : { »

criteria : cpe:2.3:o:xen:xen:4.5.5:*:*:*:*:*:*:* (string)

matchCriteriaId : 37DA3D28-EAE7-4EC9-977C-444A46CBD9C7 (string)

vulnerable : true (boolean)

}

33 : { »

criteria : cpe:2.3:o:xen:xen:4.6.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 4B6F7CE9-C409-4D88-9A99-B21420633F45 (string)

vulnerable : true (boolean)

}

34 : { »

criteria : cpe:2.3:o:xen:xen:4.6.1:*:*:*:*:*:*:* (string)

matchCriteriaId : B814C381-4991-495A-B530-7543F977B346 (string)

vulnerable : true (boolean)

}

35 : { »

criteria : cpe:2.3:o:xen:xen:4.6.3:*:*:*:*:*:*:* (string)

matchCriteriaId : 14442705-D243-4250-A486-E70989946D73 (string)

vulnerable : true (boolean)

}

36 : { »

criteria : cpe:2.3:o:xen:xen:4.6.4:*:*:*:*:*:*:* (string)

matchCriteriaId : BBB7BAFE-9CB4-40D2-908C-55307728116F (string)

vulnerable : true (boolean)

}

37 : { »

criteria : cpe:2.3:o:xen:xen:4.7.0:*:*:*:*:*:*:* (string)

matchCriteriaId : F1DD0255-9127-4C7F-9C02-42198820363E (string)

vulnerable : true (boolean)

}

38 : { »

criteria : cpe:2.3:o:xen:xen:4.7.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 8FDFDDA0-51D2-4995-9B4D-48047C940FC5 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

1 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:a:citrix:xenserver:6.0.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 5FCF191B-971A-4945-AB14-08091689BE2F (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:a:citrix:xenserver:6.2.0:*:*:*:*:*:*:* (string)

matchCriteriaId : BCEA97B9-A443-4F87-81B4-B3F0E94AC18E (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:a:citrix:xenserver:6.5:*:*:*:*:*:*:* (string)

matchCriteriaId : 56434D13-7A7B-495C-A135-2688C706A065 (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:a:citrix:xenserver:7.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 405F950F-0772-41A3-8B72-B67151CC1376 (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode. (string)

}

1 : { »

lang : es (string)

value : Xen 4.0.x hasta la versión 4.7.x administra mal los conmutadores de tareas x86 para el modo VM86, lo que permite a usuarios locales del SO invitado x86 HVM de 32-bit obtener privilegios o provocar una denegación de servicio (caída del SO invitado) aprovechando un sistema operativo invitado que utiliza conmutación de tareas de hardware y permite iniciar una una nueva tarea en modo VM86. (string)

}

]

id : CVE-2016-9382 (string)

lastModified : 2025-04-20T01:37:25.860 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : LOCAL (string)

authentication : NONE (string)

availabilityImpact : PARTIAL (string)

baseScore : 4.6 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : PARTIAL (string)

vectorString : AV:L/AC:L/Au:N/C:P/I:P/A:P (string)

version : 2.0 (string)

}

exploitabilityScore : 3.9 (number)

impactScore : 6.4 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

cvssMetricV30 : [ »

0 : { »

cvssData : { »

attackComplexity : LOW (string)

attackVector : LOCAL (string)

availabilityImpact : HIGH (string)

baseScore : 7.8 (number)

baseSeverity : HIGH (string)

confidentialityImpact : HIGH (string)

integrityImpact : HIGH (string)

privilegesRequired : LOW (string)

scope : UNCHANGED (string)

userInteraction : NONE (string)

vectorString : CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (string)

version : 3.0 (string)

}

exploitabilityScore : 1.8 (number)

impactScore : 5.9 (number)

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

published : 2017-01-23T21:59:02.830 (string)

references : [ »

0 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securityfocus.com/bid/94470 (string)

}

1 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securitytracker.com/id/1037341 (string)

}

2 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://xenbits.xen.org/xsa/advisory-192.html (string)

}

3 : { »

source : cve@mitre.org (string)

url : https://security.gentoo.org/glsa/201612-56 (string)

}

4 : { »

source : cve@mitre.org (string)

tags : [ »

0 : Patch (string)

1 : Third Party Advisory (string)

]

url : https://support.citrix.com/article/CTX218775 (string)

}

5 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securityfocus.com/bid/94470 (string)

}

6 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Third Party Advisory (string)

1 : VDB Entry (string)

]

url : http://www.securitytracker.com/id/1037341 (string)

}

7 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://xenbits.xen.org/xsa/advisory-192.html (string)

}

8 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

url : https://security.gentoo.org/glsa/201612-56 (string)

}

9 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Third Party Advisory (string)

]

url : https://support.citrix.com/article/CTX218775 (string)

}

]

sourceIdentifier : cve@mitre.org (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-264 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Show plain JSON

{"acknowledgement": "Red Hat would like to thank the Xen project for reporting this issue. Upstream acknowledges Jan Beulich (SUSE) as the original reporter.", "bugzilla": {"description": "xen: x86 task switch to VM86 mode mis-handled (XSA-192)", "id": "1392933", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1392933"}, "csaw": false, "cvss": {"cvss_base_score": "4.6", "cvss_scoring_vector": "AV:N/AC:H/Au:S/C:P/I:P/A:P", "status": "draft"}, "cvss3": {"cvss3_base_score": "7.5", "cvss3_scoring_vector": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H", "status": "draft"}, "details": ["Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode."], "name": "CVE-2016-9382", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:5", "fix_state": "Not affected", "package_name": "xen", "product_name": "Red Hat Enterprise Linux 5"}], "public_date": "2016-11-22T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2016-9382\nhttps://nvd.nist.gov/vuln/detail/CVE-2016-9382\nhttp://xenbits.xen.org/xsa/advisory-192.html"], "threat_severity": "Moderate"}

{

acknowledgement : Red Hat would like to thank the Xen project for reporting this issue. Upstream acknowledges Jan Beulich (SUSE) as the original reporter. (string)

bugzilla : { »

description : xen: x86 task switch to VM86 mode mis-handled (XSA-192) (string)

id : 1392933 (string)

url : https://bugzilla.redhat.com/show_bug.cgi?id=1392933 (string)

}

csaw : false (boolean)

cvss : { »

cvss_base_score : 4.6 (string)

cvss_scoring_vector : AV:N/AC:H/Au:S/C:P/I:P/A:P (string)

status : draft (string)

}

cvss3 : { »

cvss3_base_score : 7.5 (string)

cvss3_scoring_vector : CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H (string)

status : draft (string)

}

details : [ »

0 : Xen 4.0.x through 4.7.x mishandle x86 task switches to VM86 mode, which allows local 32-bit x86 HVM guest OS users to gain privileges or cause a denial of service (guest OS crash) by leveraging a guest operating system that uses hardware task switching and allows a new task to start in VM86 mode. (string)

]

name : CVE-2016-9382 (string)

package_state : [ »

0 : { »

cpe : cpe:/o:redhat:enterprise_linux:5 (string)

fix_state : Not affected (string)

package_name : xen (string)

product_name : Red Hat Enterprise Linux 5 (string)

}

]

public_date : 2016-11-22T00:00:00Z (string)

references : [ »

0 : https://www.cve.org/CVERecord?id=CVE-2016-9382 https://nvd.nist.gov/vuln/detail/CVE-2016-9382 http://xenbits.xen.org/xsa/advisory-192.html (string)

]

threat_severity : Moderate (string)

}

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

Metrics

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object