How severe is CVE-2019-18420?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.5 out of 10.

What type of vulnerability is CVE-2019-18420?

This is classified as CWE-134, which is a common weakness in software security.

CVE-2019-18420

MEDIUM Year: 2019

CVSS v3 Score

6.5

Medium

CVSS v2 Score

6.3

Medium

Weakness Type

CWE-134

View all →

Vulnerability Description

An issue was discovered in Xen through 4.12.x allowing x86 PV guest OS users to cause a denial of service via a VCPUOP_initialise hypercall. hypercall_create_continuation() is a variadic function which uses a printf-like format string to interpret its parameters. Error handling for a bad format character was done using BUG(), which crashes Xen. One path, via the VCPUOP_initialise hypercall, has a bad format character. The BUG() can be hit if VCPUOP_initialise executes for a sufficiently long period of time for a continuation to be created. Malicious guests may cause a hypervisor crash, resulting in a Denial of Service (DoS). Xen versions 4.6 and newer are vulnerable. Xen versions 4.5 and earlier are not vulnerable. Only x86 PV guests can exploit the vulnerability. HVM and PVH guests, and guests on ARM systems, cannot exploit the vulnerability.

CVE-2016-1895

MEDIUM

CVSS:6.5(Medium)

NetApp Data ONTAP before 8.2.5 and 8.3.x before 8.3.2P12 allow remote authenticated users to cause a denial of service via vectors related to unsafe user input string handling.

CWE-1342016

CVE-2021-28846

MEDIUM

CVSS:6.5(Medium)

A Format String vulnerablity exists in TRENDnet TEW-755AP 1.11B03, TEW-755AP2KAC 1.11B03, TEW-821DAP2KAC 1.11B03, and TEW-825DAP 1.11B03, which could let a remote malicious user cause a denial of serv...

CWE-1342021

CVE-2022-26392

MEDIUM

CVSS:6.5(Medium)

The Baxter Spectrum WBM (v16, v16D38) and Baxter Spectrum WBM (v17, v17D19, v20D29 to v20D32) when in superuser mode is susceptible to format string attacks via application messaging. An attacker coul...

CWE-1342022

CVE-2022-43869

MEDIUM

CVSS:6.5(Medium)

IBM Spectrum Scale (5.1.0.0 through 5.1.2.8 and 5.1.3.0 through 5.1.5.1) and IBM Elastic Storage System (6.1.0.0 through 6.1.2.4 and 6.1.3.0 through 6.1.4.1) could allow an authenticated user to cause...

CWE-1342022

CVE-2023-22923

MEDIUM

CVSS:6.5(Medium)

A format string vulnerability in a binary of the Zyxel NBG-418N v2 firmware versions prior to V1.00(AARP.14)C0 could allow a remote authenticated attacker to cause denial-of-service (DoS) conditions o...

CWE-1342023

CVE-2023-6399

MEDIUM

CVSS:6.5(Medium)

A format string vulnerability in Zyxel ATP series firmware versions from 4.32 through 5.37 Patch 1, USG FLEX series firmware versions from 4.50 through 5.37 Patch 1, USG FLEX 50(W) series firmware ver...

CWE-1342023

CVE-2019-18420

Vulnerability Description

Related Vulnerabilities

CVE-2016-1895

CVE-2021-28846

CVE-2022-26392

CVE-2022-43869

CVE-2023-22923

CVE-2023-6399