VDB

DEBIAN-CVE-2020-14377

DEBIAN-CVE-2020-14377 PUBLISHED CVSS 7.099999904632568 HIGH

A flaw was found in dpdk in versions before 18.11.10 and before 19.11.5. A complete lack of validation of attacker-controlled parameters can lead to a buffer over read. The results of the over read are then written back to the guest virtual machine memory. This vulnerability can be used by an attacker in a virtual machine to read significant amounts of host memory. The highest threat from this vulnerability is to data confidentiality and system availability.

Risk Scores

CVSS 3.1
7.099999904632568
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:H

Affected Products

VendorProductVersions
Debian:12dpdk0, 0, 0
Debian:11dpdk0, 0, 0
Debian:13dpdk0, 0, 0
Debian:14dpdk0, 0, 0

Timeline

  • Sep 30, 2020 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›