Home > Vulnerability Database > CVE-2020-8832

Mend.io Vulnerability Database

CVE-2020-8832

Good to know:

Date: April 9, 2020

The fix for the Linux kernel in Ubuntu 18.04 LTS for CVE-2019-14615 ("The Linux kernel did not properly clear data structures on context switches for certain Intel graphics processors.") was discovered to be incomplete, meaning that in versions of the kernel before 4.15.0-91.92, an attacker could use this vulnerability to expose sensitive information.

Language: C

Severity Score

5.5

Related Resources (6)

Url: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1862840

Url: https://security.netapp.com/advisory/ntap-20200430-0004/

Url: https://usn.ubuntu.com/usn/usn-4302-1

Url: https://nvd.nist.gov/vuln/detail/CVE-2020-8832

Url: https://access.redhat.com/security/cve/CVE-2020-8832

Url: https://www.mend.io/vulnerability-database/CVE-2020-8832

Severity Score

5.5

Weakness Type (CWE)

Exposure of Sensitive Information to an Unauthorized Actor

CWE-200

Top Fix

Upgrade Version

Upgrade to version linux-yocto - 4.8.26+gitAUTOINC+1c60e003c7_27efc3ba68

Learn More

CVSS v3.1

Base Score:	5.5
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	NONE
User Interaction (UI):	REQUIRED
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	NONE
Availability (A):	NONE

CVSS v2

Base Score:	2.1
Access Vector (AV):	LOCAL
Access Complexity (AC):	LOW
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	NONE
Availability (A):	NONE
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2020-8832

Good to know:

Date: April 9, 2020

Language: C

Severity Score

Related Resources (6)

Severity Score

Weakness Type (CWE)

Top Fix

Upgrade Version

CVSS v3.1

CVSS v2

Do you need more information?