CVE-2020-14304

Summary

A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.

Affected Software

VendorProductVersion RangeStatus
Linux Kernelkernel5.6.7-1affected
Linux Kernelkernel4.19.118-2affected
Linux Kernelkernel4.9.210-1affected

Weaknesses

  • CWE-460: CWE-460

ADP Enrichment

CVE Program Container

Additional References

References