Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-r384-9q9m-w3m5

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью
CVSS3: 6.5

Описание

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application.The security update addresses the vulnerability by resolving the conditions where Hyper-V would fail to handle these requests., aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2020-0904.

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application.The security update addresses the vulnerability by resolving the conditions where Hyper-V would fail to handle these requests., aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2020-0904.

EPSS

Процентиль: 93%
0.11331
Средний

6.5 Medium

CVSS3

Дефекты

CWE-269

Связанные уязвимости

CVSS3: 6.5
nvd
почти 5 лет назад

<p>A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.</p> <p>To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application.</p> <p>The security update addresses the vulnerability by resolving the conditions where Hyper-V would fail to handle these requests.</p>

CVSS3: 6.5
msrc
почти 5 лет назад

Windows Hyper-V Denial of Service Vulnerability

CVSS3: 6.5
fstec
почти 5 лет назад

Уязвимость системы аппаратной виртуализации Hyper-V операционных систем Windows, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 93%
0.11331
Средний

6.5 Medium

CVSS3

Дефекты

CWE-269