Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2020-10781
HistoryJun 18, 2020 - 12:00 a.m.

CVE-2020-10781

2020-06-1800:00:00
ubuntu.com
ubuntu.com
52

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

JSON

A flaw was found in the Linux Kernel before 5.8-rc6 in the ZRAM kernel
module, where a user with a local account and the ability to read the
/sys/class/zram-control/hot_add file can create ZRAM device nodes in the
/dev/ directory. This read allocates kernel memory and is not accounted for
a user that triggers the creation of that ZRAM device. With this
vulnerability, continually reading the device may consume a large amount of
system memory and cause the Out-of-Memory (OOM) killer to activate and
terminate random userspace processes, possibly making the system
inoperable.

Bugs

Notes

Author Note
sbeattie zram module is not loaded by default, but is enabled.
OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchlinux< 4.15.0-115.116UNKNOWN
ubuntu20.04noarchlinux< 5.4.0-45.49UNKNOWN
ubuntu18.04noarchlinux-aws< 4.15.0-1080.84UNKNOWN
ubuntu20.04noarchlinux-aws< 5.4.0-1022.22UNKNOWN
ubuntu18.04noarchlinux-aws-5.4< 5.4.0-1022.22~18.04.1UNKNOWN
ubuntu16.04noarchlinux-aws-hwe< 4.15.0-1080.84~16.04.1UNKNOWN
ubuntu20.04noarchlinux-azure< 5.4.0-1023.23UNKNOWN
ubuntu14.04noarchlinux-azure< 4.15.0-1093.103~14.04.1UNKNOWN
ubuntu16.04noarchlinux-azure< 4.15.0-1093.103~16.04.1UNKNOWN
ubuntu18.04noarchlinux-azure-4.15< 4.15.0-1093.103UNKNOWN
Rows per page:
1-10 of 321

Related

nvd 1
veracode 1
debiancve 1
cvelist 1
cbl_mariner 1
cve 1
prion 1
redhatcve 1
ibm 1
openvas 20
nessus 29
oraclelinux 4
suse 3
photon 4
mageia 1
ubuntu 2
amazon 2
debian 1
osv 1
nvd
nvd
CVE-2020-10781
2020-09-16 13:15:10
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:21:15
debiancve
debiancve
CVE-2020-10781
2020-09-16 13:15:10
cvelist
cvelist
CVE-2020-10781
2020-09-16 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-10781 affecting package kernel 5.4.91-6
2021-03-03 03:44:27
cve
cve
CVE-2020-10781
2020-09-16 13:15:10
prion
prion
Hardcoded credentials
2020-09-16 13:15:00
redhatcve
redhatcve
CVE-2020-10781
2020-06-17 09:25:04
ibm
ibm
Security Bulletin: Publicly disclosed vulnerability from Kernel affects IBM Netezza Host Management
2020-10-21 16:15:24
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2020:2102-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-2549)
2020-12-15 00:00:00
openSUSE: Security Advisory for the (openSUSE-SU-2020:1236-1)
2020-08-22 00:00:00
nessus
nessus
EulerOS 2.0 SP5 : kernel (EulerOS-SA-2020-2549)
2020-12-15 00:00:00
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2020-5848)
2020-09-15 00:00:00
Amazon Linux 2 : kernel (ALASKERNEL-5.4-2022-014)
2022-05-02 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2020-09-14 00:00:00
Unbreakable Enterprise kernel security update
2020-09-11 00:00:00
Unbreakable Enterprise kernel security update
2020-10-12 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2020-08-21 00:00:00
Security update for the Linux Kernel (important)
2020-08-06 00:00:00
Security update for RT kernel (moderate)
2021-02-05 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0127
2020-08-18 00:00:00
Important Photon OS Security Update - PHSA-2021-0436
2021-09-17 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0127
2020-08-18 00:00:00
mageia
mageia
Updated kernel packages fix security vulnerability
2020-08-18 21:47:25
ubuntu
ubuntu
Linux kernel vulnerabilities
2020-09-03 00:00:00
Linux kernel vulnerabilities
2020-09-03 00:00:00
amazon
amazon
Important: kernel
2020-08-18 20:29:00
Important: kernel
2020-08-18 20:29:00
debian
debian
[SECURITY] [DLA 2385-1] linux-4.19 security update
2020-09-28 13:31:21
osv
osv
linux-4.19 - security update
2020-09-26 00:00:00

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0

Percentile

5.1%

JSON
Related for UB:CVE-2020-10781
nvd1veracode1debiancve1cvelist1cbl_mariner1cve1prion1redhatcve1ibm1openvas20nessus29oraclelinux4suse3photon4mageia1ubuntu2amazon2debian1osv1