CVE-2020-35508

Published: 26/03/2021 Updated: 12/02/2023

CVSS v2 Base Score: 4.4 | Impact Score: 6.4 | Exploitability Score: 3.4

CVSS v3 Base Score: 4.5 | Impact Score: 3.4 | Exploitability Score: 1

VMScore: 392

Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P

A flaw possibility of race condition and incorrect initialization of the process id was found in the Linux kernel child/parent process identification handling while filtering signal handlers. A local attacker is able to abuse this flaw to bypass checks to send any signal to a privileged process.

Vulnerable Product	Search on Vulmon	Subscribe to Product
linux linux kernel 5.12
linux linux kernel
redhat enterprise linux 8.0
netapp a700s firmware -
netapp brocade fabric operating system firmware -
netapp fas8300 firmware -
netapp fas8700 firmware -
netapp aff a400 firmware -
netapp h300s firmware -
netapp h500s firmware -
netapp h700s firmware -
netapp h300e firmware -
netapp h500e firmware -
netapp h700e firmware -
netapp h410s firmware -
netapp h410c firmware -
netapp h610c firmware -
netapp h610s firmware -
netapp h615c firmware -

CWE-665 https://github.com/torvalds/linux/commit/b4e00444cab4c3f3fec876dc0cccc8cbb0d1a948 https://bugzilla.redhat.com/show_bug.cgi?id=1902724 https://security.netapp.com/advisory/ntap-20210513-0006/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2020-35508

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect