1. Home
  2. Vulnerabilities
  3. CVE-2020-35513

CVE-2020-35513

CVSS v3.1 4.9 (Medium)
49% Progress
CVSS v2.0 4 (Medium)
40% Progress
EPSS 0.07 % (31th)
0.07% Progress
Affected Products 2
Advisories 3
Info CVSS EPSS Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

A flaw incorrect umask during file or directory modification in the Linux kernel NFS (network file system) functionality was found in the way user create and delete object using NFSv4.2 or newer if both simultaneously accessing the NFS by the other process that is not using new NFSv4.2. A user with access to the NFS could use this flaw to starve the resources causing denial of service.

Weaknesses
CWE-271
Privilege Dropping / Lowering Errors
CVE Status
PUBLISHED
CNA
Red Hat, Inc.
Published Date
2021-01-26 18:15:54
(3 years ago)
Updated Date
2023-11-07 03:21:56
(10 months ago)

Affected Products

Linux

Redhat

Configuration #1

    CPE23 From Up To
  Linux Kernel 4.2 cpe:2.3:o:linux:linux_kernel:4.2

Configuration #2

    CPE23 From Up To
  Redhat Enterprise Linux 7.0 cpe:2.3:o:redhat:enterprise_linux:7.0