CVE-2020-25221 in Linux and NetApp Products
Published on September 10, 2020

get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting (caused by gate page mishandling) of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit process that can use ptrace() or process_vm_readv(), aka CID-9fa2dd946743.

NVD

Products Associated with CVE-2020-25221

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-25221 are published in these products:

Linux Kernel

NetApp Cloud Backup

NetApp Solidfire Hci Management Node

NetApp Hci Compute Node

NetApp Solidfire Baseboard Management Controller

NetApp Solidfire Enterprise Sds Hci Storage Node

Exploit Probability

EPSS

0.19%

Percentile

41.09%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2020-25221 in Linux and NetApp ProductsPublished on September 10, 2020

Products Associated with CVE-2020-25221

Exploit Probability

CVE-2020-25221 in Linux and NetApp Products
Published on September 10, 2020