7.2
CVSSv2

CVE-2020-25220

Published: 10/09/2020 Updated: 14/09/2020
CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

The Linux kernel 4.9.x prior to 4.9.233, 4.14.x prior to 4.14.194, and 4.19.x prior to 4.19.140 has a use-after-free because skcd->no_refcnt was not considered during a backport of a CVE-2020-14356 patch. This is related to the cgroups feature.

Vulnerability Trend