1. Home
  2. Vulnerabilities
  3. CVE-2020-12659

CVE-2020-12659

CVSS v3.1 6.7 (Medium)
67% Progress
CVSS v2.0 7.2 (High)
72% Progress
EPSS 0.07 % (32th)
0.07% Progress
Affected Products 8
Advisories 15
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

An issue was discovered in the Linux kernel before 5.6.7. xdp_umem_reg in net/xdp/xdp_umem.c has an out-of-bounds write (by a user with the CAP_NET_ADMIN capability) because of a lack of headroom validation.

Weaknesses
CWE-787
Out-of-bounds Write
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2020-05-05 07:15:11
(4 years ago)
Updated Date
2024-02-01 00:50:37
(7 months ago)

Affected Products

Linux

Netapp

Configuration #1

    CPE23 From Up To
  Linux Kernel from 4.18 version and prior 4.19.118 version cpe:2.3:o:linux:linux_kernel >= 4.18 < 4.19.118
  Linux Kernel from 4.20 version and prior 5.4.35 version cpe:2.3:o:linux:linux_kernel >= 4.20 < 5.4.35
  Linux Kernel from 5.5 version and prior 5.6.7 version cpe:2.3:o:linux:linux_kernel >= 5.5 < 5.6.7

Configuration #2

    CPE23 From Up To
  Netapp Active Iq Unified Manager for Vmware Vsphere cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere
  Netapp Cloud Backup cpe:2.3:a:netapp:cloud_backup:-
  Netapp Hci Baseboard Management Controller H300s cpe:2.3:a:netapp:hci_baseboard_management_controller:h300s
  Netapp Hci Baseboard Management Controller H410c cpe:2.3:a:netapp:hci_baseboard_management_controller:h410c
  Netapp Hci Baseboard Management Controller H410s cpe:2.3:a:netapp:hci_baseboard_management_controller:h410s
  Netapp Hci Baseboard Management Controller H500s cpe:2.3:a:netapp:hci_baseboard_management_controller:h500s
  Netapp Hci Baseboard Management Controller H610c cpe:2.3:a:netapp:hci_baseboard_management_controller:h610c
  Netapp Hci Baseboard Management Controller H610s cpe:2.3:a:netapp:hci_baseboard_management_controller:h610s
  Netapp Hci Baseboard Management Controller H615c cpe:2.3:a:netapp:hci_baseboard_management_controller:h615c
  Netapp Hci Baseboard Management Controller H700s cpe:2.3:a:netapp:hci_baseboard_management_controller:h700s
  Netapp Solidfire & Hci Management Node cpe:2.3:a:netapp:solidfire_\%26_hci_management_node:-
  Netapp Steelstore Cloud Integrated Storage cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-
  Netapp Aff Baseboard Management Controller A700s cpe:2.3:h:netapp:aff_baseboard_management_controller:a700s
  Netapp Solidfire Baseboard Management Controller cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-