CVE-2020-14377

2020-09-29T14:41:17
ID RH:CVE-2020-14377
Type redhatcve
Reporter redhat.com
Modified 2021-05-13T05:54:57

Description

A flaw was found in dpdk. A complete lack of validation of attacker-controlled parameters can lead to a buffer over read. The results of the over read are then written back to the guest virtual machine memory. This vulnerability can be used by an attacker in a virtual machine to read significant amounts of host memory. The highest threat from this vulnerability is to data confidentiality and system availability.