Vulnerabilities > CVE-2020-14304 - Unspecified vulnerability in Linux Kernel 4.19.1182/4.9.2101/5.6.71

047910
CVSS 4.4 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
local
low complexity
linux

Summary

A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.

Vulnerable Configurations

Part Description Count
OS
Linux
3