CVE-2025-58150HIGH 8.8EPSS p2.7%

CVE-2025-58150CVE-2025-58150

Description

Shadow mode tracing code uses a set of per-CPU variables to avoid cumbersome parameter passing. Some of these variables are written to with guest controlled data, of guest controllable size. That size can be larger than the variable, and bounding of the writes was missing.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
EPSS0.13% probability of exploitation · percentile 2.7% · 2026-06-18T12:00:27Z
Published2026-01-28
Last modified2026-02-09

Underlying weaknesses· 1

CWE-787

References

  1. https://xenbits.xenproject.org/xsa/advisory-477.html
  2. http://www.openwall.com/lists/oss-security/2026/01/27/1
  3. http://xenbits.xen.org/xsa/advisory-477.html

1

TypeTargetConfidenceTier
WeaknessOut-of-bounds Writecwe-7870%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-0467
CVE
CVE-2025-8109
CVE
CVE-2026-25260
CVE
CVE-2026-0028
CVE
CVE-2025-59610
CVE
CVE-2026-25258
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.