Tag
high
advisory
Multiple Xen Hypervisor Vulnerabilities Leading to Privilege Escalation, DoS, and Data Confidentiality Compromise
3 rules 3 TTPs 1 CVEMultiple vulnerabilities, including CVE-2025-10263, CVE-2026-42487, CVE-2026-42488, CVE-2026-42489, and CVE-2026-42490, have been discovered in Xen, allowing an attacker to achieve privilege escalation, trigger a remote denial of service, and compromise data confidentiality on vulnerable hypervisor instances.
Xen
virtualization
hypervisor
vulnerability
privilege-escalation
denial-of-service
data-exfiltration
3r
3t
1c
high
advisory
Xenstore Crash Vulnerability via Malicious Node Path Access (CVE-2026-23555)
2 rules 1 TTPA guest VM issuing a Xenstore command with the node path '/local/domain/' can crash xenstored (CVE-2026-23555), or, if NDEBUG is defined, cause denial of service by consuming all CPU resources.
xen
xenstore
denial-of-service
CVE-2026-23555
hypervisor
vulnerability
linux
2r
1t