CVE-2015-2150

EPSS 0.11% · P29 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-2150

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Xen 3.3.x through 4.5.x and the Linux kernel through 3.19.1 do not properly restrict access to PCI command registers, which might allow local guest OS users to cause a denial of service (non-maskable interrupt and host crash) by disabling the (1) memory or (2) I/O decoding for a PCI Express device and then accessing the device, which triggers an Unsupported Request (UR) response.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Xen 权限许可和访问控制漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Xen是英国剑桥大学开发的一款开源的虚拟机监视器产品。该产品能够使不同和不兼容的操作系统运行在同一台计算机上，并支持在运行时进行迁移，保证正常运行并且避免宕机。 Xen 3.2.x版本至4.5.x版本中存在安全漏洞，该漏洞源于程序没有正确限制对PCI命令寄存器的访问。本地虚拟机端攻击者可利用该漏洞造成拒绝服务（non-maskable中断和主机崩溃）。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-2150

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-2150

请登录查看更多情报信息。

http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git%3Ba=commit%3Bh=af6fc858a35b90e89ea7a7ee58e66628c55c776bx_refsource_CONFIRM
http://www1.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-423503.htmx_refsource_CONFIRM
http://xenbits.xen.org/xsa/advisory-120.htmlx_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=1196266x_refsource_CONFIRM
https://github.com/torvalds/linux/commit/af6fc858a35b90e89ea7a7ee58e66628c55c776bx_refsource_CONFIRM
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.htmlx_refsource_CONFIRM
http://www.securityfocus.com/bid/73014vdb-entryx_refsource_BID
http://www.securitytracker.com/id/1031806vdb-entryx_refsource_SECTRACK
http://www.securitytracker.com/id/1031902vdb-entryx_refsource_SECTRACK
http://www.debian.org/security/2015/dsa-3237vendor-advisoryx_refsource_DEBIAN
http://www.ubuntu.com/usn/USN-2631-1vendor-advisoryx_refsource_UBUNTU
http://www.ubuntu.com/usn/USN-2632-1vendor-advisoryx_refsource_UBUNTU
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155854.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2015-March/152747.htmlvendor-advisoryx_refsource_FEDORA
http://lists.fedoraproject.org/pipermail/package-announce/2015-April/155908.htmlvendor-advisoryx_refsource_FEDORA
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00004.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00001.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00018.htmlvendor-advisoryx_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2015-09/msg00021.htmlvendor-advisoryx_refsource_SUSE
https://seclists.org/bugtraq/2019/Aug/18mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2015-2150

Same Patch Batch · n/a · 2015-03-12 · 20 CVEs total

CVE-2015-0522		EMC RSA Certificate Manager和RSA Registration Manager 跨站脚本漏洞
CVE-2015-1066		Apple OS X IOAcceleratorFamily 数字错误漏洞
CVE-2015-1065		Apple iOS和OS X iCloud Keychain 缓冲区溢出漏洞
CVE-2015-1064		Apple iOS Springboard 信息泄露漏洞
CVE-2015-1063		Apple iOS CoreTelephony 安全漏洞
CVE-2015-1062		Apple iOS和Apple TV MobileStorageMounter 安全漏洞
CVE-2015-1061		多款Apple产品IOSurface 代码注入漏洞
CVE-2015-0525		EMC Secure Remote Services Virtual Edition Gateway Provisioning服务操作系统命令注入漏洞
CVE-2015-0524		EMC Secure Remote Services Virtual Edition Gateway Provisioning服务SQL注入漏洞
CVE-2015-0523		EMC RSA Certificate Manager和RSA Registration Manager 输入验证漏洞
CVE-2015-2237		Betster SQL注入漏洞
CVE-2015-0521		EMC RSA Certificate Manager和RSA Registration Manager 跨站脚本漏洞
CVE-2015-2285		Canonical Ubuntu Upstart 权限许可和访问控制漏洞
CVE-2015-2241		Django 跨站脚本漏洞
CVE-2015-2208		PHPMoAdmin‘moadmin.php’操作系统命令注入漏洞
CVE-2015-2151		Xen x86模拟器权限许可和访问控制漏洞
CVE-2015-2045		Xen 信息泄露漏洞
CVE-2015-2044		Xen 信息泄露漏洞
CVE-2015-2275		WoltLab Community Gallery 跨站脚本漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-2150

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2015-2150

I. Basic Information for CVE-2015-2150

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2015-2150

III. Intelligence Information for CVE-2015-2150

Same Patch Batch · n/a · 2015-03-12 · 20 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2015-2150

Leave a comment