← Back

CVE-2020-10732

nvd nist
Published: Jun 12, 2020Modified: Nov 21, 2024

JSON object

Loading...
4.4
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L
Exploitability: 1.8 / Impact: 2.5
Source: NVD

Description

A flaw was found in the Linux kernel's implementation of Userspace core dumps. This flaw allows an attacker with a local account to crash a trivial program and exfiltrate private kernel data.

Affected (29)

Products: Linux: Linux Kernel · Opensuse: Leap · Canonical: Ubuntu Linux · +1 more
Show all products
Linux: Linux Kernel · Opensuse: Leap · Canonical: Ubuntu Linux · Netapp: Active Iq Unified Manager, Hci Management Node, Solidfire, Steelstore Cloud Integrated Storage, Aff A700 Firmware, H410c Firmware, H300s Firmware, H500s Firmware, H700s Firmware, H300e Firmware, H500e Firmware, H700e Firmware, H410s Firmware, Aff 8300 Firmware, Aff 8700 Firmware, Aff A400 Firmware
Linux
1 product
Linux Kernel
Opensuse
1 product
Leap
Canonical
1 product
Ubuntu Linux
Netapp
16 products
Active Iq Unified Manager
Hci Management Node
Solidfire
Steelstore Cloud Integrated Storage
Aff A700 Firmware
H410c Firmware
H300s Firmware
H500s Firmware
H700s Firmware
H300e Firmware
H500e Firmware
H700e Firmware
H410s Firmware
Aff 8300 Firmware
Aff 8700 Firmware
Aff A400 Firmware
Configuration A
7 vulnerable
Vulnerable SoftwareAffected Versions
Linux
Linux Kernel
Before 3.16.85
Linux Kernel
From 4.14 to 4.14.183
Linux Kernel
From 4.19 to 4.19.126
Linux Kernel
From 4.4 to 4.4.226
Linux Kernel
From 4.9 to 4.9.226
Linux Kernel
From 5.4 to 5.4.44
Linux Kernel
From 5.6 to 5.6.16
Configuration B
2 vulnerable
Vulnerable SoftwareAffected Versions
Opensuse
Leap
Version 15.1
Leap
Version 15.2
Configuration C
4 vulnerable
Vulnerable SoftwareAffected Versions
Canonical
Ubuntu Linux
Version 14.04
Ubuntu Linux
Version 16.04
Ubuntu Linux
Version 18.04
Ubuntu Linux
Version 20.04
Configuration D
4 vulnerable
Vulnerable SoftwareAffected Versions
Active Iq Unified Manager
From 9.5
Hci Management Node
All versions
Solidfire
All versions
Steelstore Cloud Integrated Storage
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aff A700 Firmware
All versions
Running on/withPlatform Versions
Netapp
Aff A700
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H410c Firmware
All versions
Running on/withPlatform Versions
Netapp
H410c
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H300s Firmware
All versions
Running on/withPlatform Versions
Netapp
H300s
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H500s Firmware
All versions
Running on/withPlatform Versions
Netapp
H500s
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H700s Firmware
All versions
Running on/withPlatform Versions
Netapp
H700s
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H300e Firmware
All versions
Running on/withPlatform Versions
Netapp
H300e
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H500e Firmware
All versions
Running on/withPlatform Versions
Netapp
H500e
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H700e Firmware
All versions
Running on/withPlatform Versions
Netapp
H700e
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
H410s Firmware
All versions
Running on/withPlatform Versions
Netapp
H410s
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aff 8300 Firmware
All versions
Running on/withPlatform Versions
Netapp
Aff 8300
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aff 8700 Firmware
All versions
Running on/withPlatform Versions
Netapp
Aff 8700
All versions
Configuration P
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aff A400 Firmware
All versions
Running on/withPlatform Versions
Netapp
Aff A400
All versions

Related CWEs

CWE-908
Use of Uninitialized Resource
The product uses or accesses a resource that has not been initialized.

References (28)

Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Mailing ListThird Party Advisory
Source: secalert@redhat.com
Issue TrackingPatchThird Party Advisory
Source: secalert@redhat.com
PatchVendor Advisory
Source: secalert@redhat.com
Issue TrackingThird Party Advisory
Source: secalert@redhat.com
PatchThird Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: secalert@redhat.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Mailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingPatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Issue TrackingThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.