CVE-2010-0435

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2010-0435
The Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2, and KVM 83, when the Intel VT-x extension is enabled, allows guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via vectors related to instruction emulation.

4.6 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:L/AC:L/Au:S/C:N/I:N/A:C

Exploitability : 3.1 / Impact : 6.9

Access Vector LOCAL

Access Complexity LOW

Authentication SINGLE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References
Link Resource
http://lists.opensuse.org/opensuse-security-announce/2011-01/msg00000.html
http://secunia.com/advisories/42778
http://www.vupen.com/english/advisories/2011/0012
https://bugzilla.redhat.com/show_bug.cgi?id=570528
https://rhn.redhat.com/errata/RHSA-2010-0622.html Patch Vendor Advisory
https://rhn.redhat.com/errata/RHSA-2010-0627.html Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:redhat:enterprise_virtualization:2.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:kvm:83:*:*:*:*:*:*:*
History

13 Feb 2023, 04:16

Type Values Removed Values Added
References
  • {'url': 'https://access.redhat.com/errata/RHSA-2010:0627', 'name': 'https://access.redhat.com/errata/RHSA-2010:0627', 'tags': [], 'refsource': 'MISC'}
  • {'url': 'https://access.redhat.com/errata/RHSA-2010:0622', 'name': 'https://access.redhat.com/errata/RHSA-2010:0622', 'tags': [], 'refsource': 'MISC'}
  • {'url': 'https://access.redhat.com/security/cve/CVE-2010-0435', 'name': 'https://access.redhat.com/security/cve/CVE-2010-0435', 'tags': [], 'refsource': 'MISC'}
Summary CVE-2010-0435 kvm: vmx null pointer dereference The Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2, and KVM 83, when the Intel VT-x extension is enabled, allows guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via vectors related to instruction emulation.

02 Feb 2023, 17:17

Type Values Removed Values Added
References
  • (MISC) https://access.redhat.com/errata/RHSA-2010:0627 -
  • (MISC) https://access.redhat.com/errata/RHSA-2010:0622 -
  • (MISC) https://access.redhat.com/security/cve/CVE-2010-0435 -
Summary The Hypervisor (aka rhev-hypervisor) in Red Hat Enterprise Virtualization (RHEV) 2.2, and KVM 83, when the Intel VT-x extension is enabled, allows guest OS users to cause a denial of service (NULL pointer dereference and host OS crash) via vectors related to instruction emulation. CVE-2010-0435 kvm: vmx null pointer dereference
Information

Published : 2010-08-24 18:00

Updated : 2023-12-10 11:03

NVD link : CVE-2010-0435

Mitre link : CVE-2010-0435

CVE.ORG link : CVE-2010-0435

JSON object : View

Products Affected

redhat

  • kvm
  • enterprise_virtualization
CWE
NVD-CWE-Other