Is CVE-2024-45819 actively exploited?

CVE-2024-45819 has no public evidence of in-the-wild exploitation as of 2026-01-14.

What is the CVSS score for CVE-2024-45819?

CVE-2024-45819 has a CVSS score of 5.5 (MEDIUM severity). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N.

How do I patch CVE-2024-45819?

Patch guidance is available from xen security advisories. CVEDatabase generates AI-assisted remediation guidance on demand for CVE-2024-45819.

CVE-2024-45819 - remediation guidance & executive summary

Description

PVH guests have their ACPI tables constructed by the toolstack. The construction involves building the tables in local memory, which are then copied into guest memory. While actually used parts of the local memory are filled in correctly, excess space that is being allocated is left with its prior contents.

CVSS Metrics

Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector: local
Complexity: low
Privileges: low
User Action: none
Scope: unchanged
Confidentiality: high
Integrity: none
Availability: none
Weaknesses: CWE-276 · Incorrect Default Permissions

Metadata

Primary Vendor: XEN
Published: 12/19/2024
Last Modified: 1/14/2026
Source: NIST NVD
Note: Verify all details with official vendor sources before applying patches.

CVE-2024-45819

Description

CVSS Metrics

Metadata

Affected Products

Remediation Guidance

Executive Summary