CVE-2020-15852 vulnerability in Linux and Other Products
Published on July 20, 2020

An issue was discovered in the Linux kernel 5.5 through 5.7.9, as used in Xen through 4.13.x for x86 PV guests. An attacker may be granted the I/O port permissions of an unrelated task. This occurs because tss_invalidate_io_bitmap mishandling causes a loss of synchronization between the I/O bitmaps of TSS and Xen, aka CID-cadfad870154.

NVD

Products Associated with CVE-2020-15852

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-15852 are published in these products:

Linux Kernel

Citrix Xen Xen

NetApp Cloud Backup

NetApp Steelstore Cloud Integrated Storage

NetApp Solidfire Baseboard Management Controller

Exploit Probability

EPSS

0.16%

Percentile

36.89%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-15852 vulnerability in Linux and Other ProductsPublished on July 20, 2020

Products Associated with CVE-2020-15852

Exploit Probability

CVE-2020-15852 vulnerability in Linux and Other Products
Published on July 20, 2020