CVE-2025-1713
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-07-17

Last updated on: 2025-07-17

Assigner: Xen Project

Description
When setting up interrupt remapping for legacy PCI(-X) devices, including PCI(-X) bridges, a lookup of the upstream bridge is required. This lookup, itself involving acquiring of a lock, is done in a context where acquiring that lock is unsafe. This can lead to a deadlock.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-07-17
Last Modified
2025-07-17
Generated
2026-05-07
AI Q&A
2025-07-17
EPSS Evaluated
2026-05-05
NVD
CVE-2025-1713
EUVD
EUVD-2025-21765
Affected Vendors & Products
Showing 2 associated CPEs
Vendor Product Version / Range
xen xen 4.17
xen xen 4.0
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-833 The product contains multiple threads or executable segments that are waiting for each other to release a necessary lock, resulting in deadlock.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability occurs when setting up interrupt remapping for legacy PCI(-X) devices, including PCI(-X) bridges. During this process, a lookup of the upstream bridge is required, which involves acquiring a lock. However, this lock acquisition happens in a context where acquiring the lock is unsafe, potentially causing a deadlock.


How can this vulnerability impact me? :

The vulnerability can lead to a deadlock situation in the system when handling interrupt remapping for legacy PCI(-X) devices. This deadlock can cause system hangs or crashes, impacting system stability and availability.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart