CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-25221

get_gate_page in mm/gup.c in the Linux kernel 5.7.x and 5.8.x before 5.8.7 allows privilege escalation because of incorrect reference counting (caused by gate page mishandling) of the struct page that backs the vsyscall page. The result is a refcount underflow. This can be triggered by any 64-bit process that can use ptrace() or process_vm_readv(), aka CID-9fa2dd946743.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 41.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

Products affected by CVE-2020-25221

None » None » Version:

_enterprise_sds_&_hci_storage_node:-
Netapp » Cloud Backup » Version: N/A

cpe:2.3:a:netapp:cloud_backup:-
Netapp » Solidfire » Version: Any

cpe:2.3:a:netapp:solidfire
Netapp » Solidfire & Hci Management Node » Version: N/A

cpe:2.3:a:netapp:solidfire_&_hci_management_node:-
Netapp » Hci Compute Node » Version: N/A

cpe:2.3:h:netapp:hci_compute_node:-
Netapp » Solidfire Baseboard Management Controller » Version: N/A

cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-
Linux » Linux Kernel » Version: 5.7.0

cpe:2.3:o:linux:linux_kernel:5.7.0
Linux » Linux Kernel » Version: 5.7.1

cpe:2.3:o:linux:linux_kernel:5.7.1
Linux » Linux Kernel » Version: 5.7.10

cpe:2.3:o:linux:linux_kernel:5.7.10
Linux » Linux Kernel » Version: 5.7.11

cpe:2.3:o:linux:linux_kernel:5.7.11
Linux » Linux Kernel » Version: 5.7.12

cpe:2.3:o:linux:linux_kernel:5.7.12
Linux » Linux Kernel » Version: 5.7.13

cpe:2.3:o:linux:linux_kernel:5.7.13
Linux » Linux Kernel » Version: 5.7.14

cpe:2.3:o:linux:linux_kernel:5.7.14
Linux » Linux Kernel » Version: 5.7.15

cpe:2.3:o:linux:linux_kernel:5.7.15
Linux » Linux Kernel » Version: 5.7.16

cpe:2.3:o:linux:linux_kernel:5.7.16
Linux » Linux Kernel » Version: 5.7.17

cpe:2.3:o:linux:linux_kernel:5.7.17
Linux » Linux Kernel » Version: 5.7.18

cpe:2.3:o:linux:linux_kernel:5.7.18
Linux » Linux Kernel » Version: 5.7.19

cpe:2.3:o:linux:linux_kernel:5.7.19
Linux » Linux Kernel » Version: 5.7.2

cpe:2.3:o:linux:linux_kernel:5.7.2
Linux » Linux Kernel » Version: 5.7.3

cpe:2.3:o:linux:linux_kernel:5.7.3
Linux » Linux Kernel » Version: 5.7.4

cpe:2.3:o:linux:linux_kernel:5.7.4
Linux » Linux Kernel » Version: 5.7.5

cpe:2.3:o:linux:linux_kernel:5.7.5
Linux » Linux Kernel » Version: 5.7.6

cpe:2.3:o:linux:linux_kernel:5.7.6
Linux » Linux Kernel » Version: 5.7.7

cpe:2.3:o:linux:linux_kernel:5.7.7
Linux » Linux Kernel » Version: 5.7.8

cpe:2.3:o:linux:linux_kernel:5.7.8
Linux » Linux Kernel » Version: 5.7.9

cpe:2.3:o:linux:linux_kernel:5.7.9
Linux » Linux Kernel » Version: 5.8

cpe:2.3:o:linux:linux_kernel:5.8
Linux » Linux Kernel » Version: 5.8.0

cpe:2.3:o:linux:linux_kernel:5.8.0
Linux » Linux Kernel » Version: 5.8.1

cpe:2.3:o:linux:linux_kernel:5.8.1
Linux » Linux Kernel » Version: 5.8.2

cpe:2.3:o:linux:linux_kernel:5.8.2
Linux » Linux Kernel » Version: 5.8.3

cpe:2.3:o:linux:linux_kernel:5.8.3
Linux » Linux Kernel » Version: 5.8.4

cpe:2.3:o:linux:linux_kernel:5.8.4
Linux » Linux Kernel » Version: 5.8.5

cpe:2.3:o:linux:linux_kernel:5.8.5
Linux » Linux Kernel » Version: 5.8.6

cpe:2.3:o:linux:linux_kernel:5.8.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-25221

Products

Pricing

Contact Us