CVE-2016-7093
HIGH8.2EPSS 0.06%Published: 9/21/2016Modified: 12/3/2025
Also known as:ALPINE-CVE-2016-7093
Description
Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation during emulation.
Affected packages (1)
- Alpine/xenfrom 0, < 4.7.0-r1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH8.2 | CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |