CVE-2014-7188

EPSS 2.35% · P85 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2014-7188

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The hvm_msr_read_intercept function in arch/x86/hvm/hvm.c in Xen 4.1 through 4.4.x uses an improper MSR range for x2APIC emulation, which allows local HVM guests to cause a denial of service (host crash) or read data from the hypervisor or other guests via unspecified vectors.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Xen 资源管理错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Xen是英国剑桥大学开发的一款开源的虚拟机监视器产品。该产品能够使不同和不兼容的操作系统运行在同一台计算机上，并支持在运行时进行迁移，保证正常运行并且避免宕机。 Xen 4.1版本至4.4.x版本的arch/x86/hvm/hvm.c文件中的‘hvm_msr_read_intercept’函数存在安全漏洞，该漏洞源于x2APIC仿真使用错误的MSR范围。本地虚拟机端攻击者可利用该漏洞造成拒绝服务（主机崩溃）或读取虚拟机管理程序数据。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2014-7188

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2014-7188

请登录查看更多情报信息。

http://support.citrix.com/article/CTX200218x_refsource_CONFIRM
http://support.citrix.com/article/CTX201794x_refsource_CONFIRM
http://xenbits.xen.org/xsa/advisory-108.htmlx_refsource_CONFIRM
http://www.c7zero.info/stuff/csw2017_ExploringYourSystemDeeper_updated.pdfx_refsource_MISC
http://secunia.com/advisories/61890third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/70198vdb-entryx_refsource_BID
http://secunia.com/advisories/61664third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/61858third-party-advisoryx_refsource_SECUNIA
http://www.securitytracker.com/id/1030936vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2014/dsa-3041vendor-advisoryx_refsource_DEBIAN
http://security.gentoo.org/glsa/glsa-201412-42.xmlvendor-advisoryx_refsource_GENTOO
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140199.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140483.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2014-October/140418.htmlvendor-advisoryx_refsource_FEDORA
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00003.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2014-10/msg00002.htmlvendor-advisoryx_refsource_SUSE
https://exchange.xforce.ibmcloud.com/vulnerabilities/96785vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2014-7188

Same Patch Batch · n/a · 2014-10-02 · 54 CVEs total

CVE-2014-6883		Android CNNMoney Portfolio for stocks应用程序加密问题漏洞
CVE-2014-4765		IBM Maximo Asset Management 信息泄露漏洞
CVE-2014-2641		HP System Management Homepage 跨站请求伪造漏洞
CVE-2014-3060		IBM WebSphere DataPower XC10 Appliance 安全漏洞
CVE-2014-3059		IBM WebSphere DataPower XC10 Appliance 安全漏洞
CVE-2014-2642		HP System Management Homepage 输入验证漏洞
CVE-2014-3097		IBM Tivoli Federated Identity Manager 开放重定向漏洞
CVE-2014-6886		Android WePhone - phone calls vs skype应用程序加密问题漏洞
CVE-2014-6885		Android Academy Sports + Outdoors Visa应用程序加密问题漏洞
CVE-2014-6884		Android Ford Credit Account Manager应用程序加密问题漏洞
CVE-2014-6888		Android PennyTalk Mobile应用程序加密问题漏洞
CVE-2014-6882		Android Western Federal Credit Union应用程序加密问题漏洞
CVE-2014-6881		Android PNC Virtual Wallet应用程序加密问题漏洞
CVE-2014-6880		Android TradeHero应用程序加密问题漏洞
CVE-2014-6879		Android Equifax Mobile应用程序加密问题漏洞
CVE-2014-6878		Android RBFCU Mobile应用程序加密问题漏洞
CVE-2014-6877		Android Santander Personal Banking应用程序加密问题漏洞
CVE-2014-6876		Android American Express Serve应用程序加密问题漏洞
CVE-2014-6875		Android Woodforest Mobile Banking应用程序加密问题漏洞
CVE-2014-6874		Android ModSim Connected应用程序加密问题漏洞

Showing top 20 of 54 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2014-7188

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2014-7188

I. Basic Information for CVE-2014-7188

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2014-7188

III. Intelligence Information for CVE-2014-7188

Same Patch Batch · n/a · 2014-10-02 · 54 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2014-7188

Leave a comment