Vulnerabilities > CVE-2020-27835 - Unspecified vulnerability in Linux Infiniband Hfi1 Driver 5.10

047910
CVSS 4.4 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
HIGH
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
local
low complexity
linux

Summary

A use after free in the Linux kernel infiniband hfi1 driver in versions prior to 5.10-rc6 was found in the way user calls Ioctl after open dev file and fork. A local user could use this flaw to crash the system.

Vulnerable Configurations

Part Description Count
Application
Linux
6