Lucene search

K
cvelistRedhatCVELIST:CVE-2020-25656
HistoryDec 02, 2020 - 12:00 a.m.

CVE-2020-25656

2020-12-0200:00:00
CWE-416
redhat
www.cve.org

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

A flaw was found in the Linux kernel. A use-after-free was found in the way the console subsystem was using ioctls KDGKBSENT and KDSKBSENT. A local user could use this flaw to get read memory access out of bounds. The highest threat from this vulnerability is to data confidentiality.

CNA Affected

[
  {
    "vendor": "n/a",
    "product": "kernel",
    "versions": [
      {
        "version": "kernel 5.10-rc2",
        "status": "affected"
      }
    ]
  }
]