ByteOS Network

NVD Vulnerability Details :

CVE-2016-7777

Deferred

Source-cve@mitre.org

Published At-07 Oct, 2016 | 14:59

Updated At-12 Apr, 2025 | 10:46

Xen 4.7.x and earlier does not properly honor CR0.TS and CR0.EM, which allows local x86 HVM guest OS users to read or modify FPU, MMX, or XMM register state information belonging to arbitrary tasks on the guest by modifying an instruction while the hypervisor is preparing to emulate it.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.0	6.3	MEDIUM	CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N
Primary	2.0	3.3	LOW	AV:L/AC:M/Au:N/C:P/I:P/A:N

CPE Matches

Xen Project

>>xen>>Versions up to 4.7.0(inclusive)

cpe:2.3:o:xen:xen:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-362	Primary	nvd@nist.gov

References

Hyperlink	Source	Resource
http://www.securityfocus.com/bid/93344	cve@mitre.org	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1036942	cve@mitre.org	Third Party Advisory VDB Entry
http://xenbits.xen.org/xsa/advisory-190.html	cve@mitre.org	Mitigation Patch Vendor Advisory
https://security.gentoo.org/glsa/201611-09	cve@mitre.org	N/A
https://support.citrix.com/article/CTX217363	cve@mitre.org	N/A
http://www.securityfocus.com/bid/93344	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1036942	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
http://xenbits.xen.org/xsa/advisory-190.html	af854a3a-2127-422b-91ae-364da2661108	Mitigation Patch Vendor Advisory
https://security.gentoo.org/glsa/201611-09	af854a3a-2127-422b-91ae-364da2661108	N/A
https://support.citrix.com/article/CTX217363	af854a3a-2127-422b-91ae-364da2661108	N/A

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History