Lucene search

[email protected]CVE-2020-26541

HistoryOct 02, 2020 - 7:15 p.m.

CVE-2020-26541

2020-10-0219:15:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

264

cve-2020-26541

linux kernel

secure boot

forbidden signature database

certs

blacklist.c

system_keyring.c

nvd

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

6.5 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

18.8%

JSON

The Linux kernel through 5.8.13 does not properly enforce the Secure Boot Forbidden Signature Database (aka dbx) protection mechanism. This affects certs/blacklist.c and certs/system_keyring.c.

CPENameOperatorVersion
linux:linux_kernellinux linux kernelle5.8.13

CPE	Name	Operator	Version
linux:linux_kernel	linux linux kernel	le	5.8.13

References

lkml.org/lkml/2020/9/15/1871

Social References

6.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

HIGH

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

6.5 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

18.8%

JSON

Related for CVE-2020-26541

ubuntucve1 debiancve1 cbl_mariner1 veracode1 prion1 redhatcve1 oraclelinux7 photon5 nessus31 redhat7 almalinux1 rocky1 osv7 mageia2 openvas22 suse5 ibm1 ubuntu5 cloudfoundry2