CVE-2020-10774

MEDIUM Year: 2020
CVSS v3 Score
5.5
Medium
CVSS v2 Score
2.1
Low
Weakness Type
CWE-805
View all →

Vulnerability Description

A memory disclosure flaw was found in the Linux kernel's versions before 4.18.0-193.el8 in the sysctl subsystem when reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.

Related Vulnerabilities

CVE-2024-34476

MEDIUM
CVSS:5.3(Medium)

Open5GS before 2.7.1 is vulnerable to a reachable assertion that can cause an AMF crash via NAS messages from a UE: ogs_nas_encrypt in lib/nas/common/security.c for pkbuf->len.

CWE-8052024

CVE-2022-0519

MEDIUM
CVSS:6.3(Medium)

Buffer Access with Incorrect Length Value in GitHub repository radareorg/radare2 prior to 5.6.2.

CWE-8052022

CVE-2019-19339

MEDIUM
CVSS:6.5(Medium)

It was found that the Red Hat Enterprise Linux 8 kpatch update did not include the complete fix for CVE-2018-12207. A flaw was found in the way Intel CPUs handle inconsistency between, virtual to phys...

CWE-8052019

CVE-2024-0131

MEDIUM
CVSS:4.4(Medium)

NVIDIA GPU kernel driver for Windows and Linux contains a vulnerability where a potential user-mode attacker could read a buffer with an incorrect length. A successful exploit of this vulnerability mi...

CWE-8052024

CVE-2024-20294

MEDIUM
CVSS:6.6(Medium)

A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS)...

CWE-8052024

CVE-2023-5396

HIGH
CVSS:7.4(High)

Server receiving a malformed message creates connection for a hostname that may cause a stack overflow resulting in possible remote code execution. See Honeywell Security Notification for recommendati...

CWE-8052023