netapp solidfire-hci-management-node CVE-2020-25645 vulnerability in NetApp and Other Products
Published on October 13, 2020

product logo product logo product logo product logo product logo
A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic between two Geneve endpoints may be unencrypted when IPsec is configured to encrypt traffic for the specific UDP port used by the GENEVE tunnel allowing anyone between the two endpoints to read the traffic unencrypted. The main threat from this vulnerability is to data confidentiality.

Vendor Advisory Vendor Advisory Vendor Advisory NVD

Weakness Type

Cleartext Transmission of Sensitive Information

The software transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors. Many communication channels can be "sniffed" by attackers during data transmission. For example, network traffic can often be sniffed by any attacker who has access to a network interface. This significantly lowers the difficulty of exploitation by attackers.


Products Associated with CVE-2020-25645

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2020-25645 are published in these products:

NetApp Solidfire Hci Management Node
 
Canonical Ubuntu Linux
 
Debian Linux
 
Linux Kernel
 
OpenSuse Leap
 

Exploit Probability

EPSS
0.36%
Percentile
57.69%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.