CVE-2020-25670

A vulnerability was found in Linux Kernel where refcount leak in llcp_sock_bind() causing use-after-free which might lead to privilege escalations.

CVSS v3 7.8 HIGH
CVSS v2.0 7.2 HIGH

7.8^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 1.8 / Impact : 5.9

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required LOW

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact HIGH

Availability Impact HIGH

Scope UNCHANGED

7.2^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 3.9 / Impact : 10.0

Access Vector LOCAL

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.openwall.com/lists/oss-security/2020/11/01/1	Exploit Mailing List Patch Third Party Advisory
http://www.openwall.com/lists/oss-security/2021/05/11/4	Exploit Mailing List Patch Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html	Mailing List Third Party Advisory
https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html	Mailing List Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PW3OASG7OEMHANDWBM5US5WKTOC76KMH/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UTVACC6PGS6OSD3EYY7FZUAZT2EUMFH5/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VEIEGQXUW37YHZ5MTAZTDCIMHUN26NJS/
https://security.netapp.com/advisory/ntap-20210702-0008/	Third Party Advisory
https://www.openwall.com/lists/oss-security/2020/11/01/1	Exploit Mailing List Patch Third Party Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::
	cpe:2.3:o:linux:linux_kernel::::::::

Configuration 2 (hide)

OR	cpe:2.3:o:fedoraproject:fedora:32:::::::*
	cpe:2.3:o:fedoraproject:fedora:33:::::::*
	cpe:2.3:o:fedoraproject:fedora:34:::::::*

Configuration 3 (hide)

OR	cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vsphere::
	cpe:2.3:a:netapp:cloud_backup:-:::::::*

Configuration 4 (hide)

AND

cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:netapp:h410c_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h410c:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:netapp:h300s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h300s:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:netapp:h500s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h500s:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:netapp:h700s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h700s:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:netapp:h300e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h300e:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:netapp:h500e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h500e:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:netapp:h700e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h700e:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:netapp:h410s_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:netapp:h410s:-:*:*:*:*:*:*:*

Configuration 13 (hide)

cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*

History

12 Feb 2023, 23:40

Type	Values Removed	Values Added
References	{'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTVACC6PGS6OSD3EYY7FZUAZT2EUMFH5/', 'name': 'FEDORA-2021-1c170a7c7c', 'tags': ['Mailing List', 'Third Party Advisory'], 'refsource': 'FEDORA'} {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PW3OASG7OEMHANDWBM5US5WKTOC76KMH/', 'name': 'FEDORA-2021-21360476b6', 'tags': ['Mailing List', 'Third Party Advisory'], 'refsource': 'FEDORA'} {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VEIEGQXUW37YHZ5MTAZTDCIMHUN26NJS/', 'name': 'FEDORA-2021-d56567bdab', 'tags': ['Mailing List', 'Third Party Advisory'], 'refsource': 'FEDORA'}	(MISC) https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/VEIEGQXUW37YHZ5MTAZTDCIMHUN26NJS/ - (MISC) https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PW3OASG7OEMHANDWBM5US5WKTOC76KMH/ - (MISC) https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/UTVACC6PGS6OSD3EYY7FZUAZT2EUMFH5/ -

13 May 2022, 19:45

Type	Values Removed	Values Added
First Time		Netapp h300e Firmware Netapp h410s Firmware Netapp h410c Firmware Netapp Debian debian Linux Netapp h500s Firmware Netapp h700s Netapp h500e Firmware Netapp solidfire Baseboard Management Controller Netapp h700e Netapp h300e Netapp cloud Backup Netapp h700e Firmware Debian Netapp h300s Firmware Netapp h410c Netapp h700s Firmware Netapp h500s Netapp h500e Netapp h300s Netapp h410s Netapp active Iq Unified Manager Netapp solidfire Baseboard Management Controller Firmware
References		(CONFIRM) https://security.netapp.com/advisory/ntap-20210702-0008/ - Third Party Advisory
References	~~(MLIST) https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html -~~	(MLIST) https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html - Mailing List, Third Party Advisory
References	~~(MLIST) https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html -~~	(MLIST) https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html - Mailing List, Third Party Advisory
CPE		cpe:2.3:h:netapp:h500e:-:::::::* cpe:2.3:o:netapp:h700s_firmware:-:::::::* cpe:2.3:o:netapp:h300e_firmware:-:::::::* cpe:2.3:o:netapp:h410c_firmware:-:::::::* cpe:2.3:o:netapp:h300s_firmware:-:::::::* cpe:2.3:h:netapp:h700s:-:::::::* cpe:2.3:o:netapp:solidfire_baseboard_management_controller_firmware:-:::::::* cpe:2.3:o:netapp:h500e_firmware:-:::::::* cpe:2.3:o:debian:debian_linux:9.0:::::::* cpe:2.3:h:netapp:h300e:-:::::::* cpe:2.3:o:netapp:h700e_firmware:-:::::::* cpe:2.3:o:netapp:h500s_firmware:-:::::::* cpe:2.3:a:netapp:cloud_backup:-:::::::* cpe:2.3:h:netapp:h700e:-:::::::* cpe:2.3:h:netapp:h410s:-:::::::* cpe:2.3:h:netapp:h410c:-:::::::* cpe:2.3:h:netapp:h300s:-:::::::* cpe:2.3:h:netapp:solidfire_baseboard_management_controller:-:::::::* cpe:2.3:o:netapp:h410s_firmware:-:::::::* cpe:2.3:a:netapp:active_iq_unified_manager:-:::::vsphere:: cpe:2.3:h:netapp:h500s:-:::::::*

23 Jun 2021, 02:15

Type	Values Removed	Values Added
References		(MLIST) https://lists.debian.org/debian-lts-announce/2021/06/msg00020.html - (MLIST) https://lists.debian.org/debian-lts-announce/2021/06/msg00019.html -

03 Jun 2021, 20:09

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : 7.2 v3 : 7.8
CPE		cpe:2.3:o:fedoraproject:fedora:32:::::::* cpe:2.3:o:fedoraproject:fedora:33:::::::* cpe:2.3:o:linux:linux_kernel:::::::: cpe:2.3:o:fedoraproject:fedora:34:::::::*
References	~~(FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTVACC6PGS6OSD3EYY7FZUAZT2EUMFH5/ -~~	(FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/UTVACC6PGS6OSD3EYY7FZUAZT2EUMFH5/ - Mailing List, Third Party Advisory
References	~~(MLIST) http://www.openwall.com/lists/oss-security/2021/05/11/4 -~~	(MLIST) http://www.openwall.com/lists/oss-security/2021/05/11/4 - Exploit, Mailing List, Patch, Third Party Advisory
References	~~(FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PW3OASG7OEMHANDWBM5US5WKTOC76KMH/ -~~	(FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PW3OASG7OEMHANDWBM5US5WKTOC76KMH/ - Mailing List, Third Party Advisory
References	~~(FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VEIEGQXUW37YHZ5MTAZTDCIMHUN26NJS/ -~~	(FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VEIEGQXUW37YHZ5MTAZTDCIMHUN26NJS/ - Mailing List, Third Party Advisory
References	~~(MLIST) http://www.openwall.com/lists/oss-security/2020/11/01/1 -~~	(MLIST) http://www.openwall.com/lists/oss-security/2020/11/01/1 - Exploit, Mailing List, Patch, Third Party Advisory
References	~~(MISC) https://www.openwall.com/lists/oss-security/2020/11/01/1 -~~	(MISC) https://www.openwall.com/lists/oss-security/2020/11/01/1 - Exploit, Mailing List, Patch, Third Party Advisory

26 May 2021, 12:04

Type	Values Removed	Values Added
CWE		CWE-416

26 May 2021, 11:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2021-05-26 11:15

Updated : 2023-12-10 13:55

NVD link : CVE-2020-25670

Mitre link : CVE-2020-25670

CVE.ORG link : CVE-2020-25670

JSON object : View

Products Affected

netapp

h700s_firmware
h410s
h500e_firmware
cloud_backup
h500e
solidfire_baseboard_management_controller_firmware
h700e_firmware
h300s
h700s
h300e
h700e
h410s_firmware
h500s
h300s_firmware
h410c
active_iq_unified_manager
h500s_firmware
h300e_firmware
h410c_firmware
solidfire_baseboard_management_controller

debian

debian_linux

fedoraproject

fedora

linux

linux_kernel

CWE

CWE-416

Use After Free

7.8 /10