QwikSec

Security Database

CVE

CWE

Training

CVE-2022-42327

Published: Nov 1, 2022

Modified: May 5, 2025

PUBLISHED

Description

x86: unintended memory sharing between guests On Intel systems that support the "virtualize APIC accesses" feature, a guest can read and write the global shared xAPIC page by moving the local APIC out of xAPIC mode. Access to this shared page bypasses the expected isolation that should exist between two guests.

Vendor	Product	Versions
Xen	xen	unknown `consult Xen advisory XSA-412`

References

https://xenbits.xenproject.org/xsa/advisory-412.txt

http://xenbits.xen.org/xsa/advisory-412.html

[oss-security] 20221101 Xen Security Advisory 412 v2 (CVE-2022-42327) - x86: unintended memory sharing between guests

mailing-list

FEDORA-2022-07438e12df

vendor-advisory

FEDORA-2022-9f51d13fa3

vendor-advisory

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.