How severe is CVE-2020-10774?

CVE-2020-10774 has a CVSS v3 score of 5.5 (MEDIUM).

CVE-2020-10774

Name: linux_kernel
Author: linux

5.5MEDIUM

A memory disclosure flaw was found in the Linux kernel's versions before 4.18.0-193.el8 in the sysctl subsystem when reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to rea

게시됨: 5/27/2021업데이트됨: 11/21/2024

설명

A memory disclosure flaw was found in the Linux kernel's versions before 4.18.0-193.el8 in the sysctl subsystem when reading the /proc/sys/kernel/rh_features file. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.

AI 분석AI 기반

영향받는 제품

linuxlinux_kernel

참조

https://bugzilla.redhat.com/show_bug.cgi?id=1846964
Issue TrackingThird Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1846964
Issue TrackingThird Party Advisory