CVE-2015-8553
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2015-8553
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Xen allows guest OS users to obtain sensitive information from uninitialized locations in host OS kernel memory by not enabling memory and I/O decoding control bits. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-0777.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Xen 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Xen是英国剑桥大学开发的一款开源的虚拟机监视器产品。该产品能够使不同和不兼容的操作系统运行在同一台计算机上,并支持在运行时进行迁移,保证正常运行并且避免宕机。 Xen中存在安全漏洞。攻击者可通过不启用内存和I/O解码控制位利用该漏洞从主机OS内核内存的未初始化位置获取敏感信息。(注:该漏洞源于CNNVD-201504-073补丁的不完全修复)
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2015-8553
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2015-8553
Please Login to view more intelligence information
- http://xenbits.xen.org/xsa/advisory-120.htmlx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2015-8553
Same Patch Batch · n/a · 2016-04-13 · 54 CVEs total
| CVE-2015-8080 | Redis Labs Redis 输入验证错误漏洞 | |
| CVE-2016-2780 | Huawei UTPS 不可信搜索路径漏洞 | |
| CVE-2015-8682 | Huawei P8 拒绝服务漏洞 | |
| CVE-2016-1577 | JasPer 双重释放漏洞 | |
| CVE-2016-1496 | Huawei P8 图形驱动组件拒绝服务漏洞 | |
| CVE-2016-1495 | Huawei Mate S 整数溢出漏洞 | |
| CVE-2016-2116 | JasPer 内存泄露漏洞 | |
| CVE-2015-8555 | Xen 信息泄露漏洞 | |
| CVE-2015-8552 | Xen 安全漏洞 | |
| CVE-2015-8551 | Xen PCI后端驱动程序拒绝服务漏洞 | |
| CVE-2015-8606 | SilverStripe CMS & Framework 跨站脚本漏洞 | |
| CVE-2015-7555 | giflib 基于堆的缓冲区溢出漏洞 | |
| CVE-2015-7545 | Git 远程命令执行漏洞 | |
| CVE-2015-0861 | trytond 安全漏洞 | |
| CVE-2016-4009 | Pillow‘ImagingResampleHorizontal’函数整数溢出漏洞 | |
| CVE-2016-3982 | OptiPNG 差一错误漏洞 | |
| CVE-2016-3981 | OptiPNG 基于堆的缓冲区溢出漏洞 | |
| CVE-2016-3686 | F5 BIG-IP APM和BIG-IP Edge Gateway 安全漏洞 | |
| CVE-2016-3630 | Mercurial binary delta解码器任意代码执行漏洞 | |
| CVE-2016-3159 | Xen 安全漏洞 |
Showing top 20 of 54 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out- - CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c
V. Comments for CVE-2015-8553
No comments yet