CVE-2020-28864

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
CVE-2020-28864 is a vulnerability that was identified in the Linux kernel, a core component of the operating system. This vulnerability allows attackers to gain root access to affected systems, giving them complete control over the device and the ability to execute arbitrary code with elevated permissions. The vulnerability is caused by an integer overflow in the kernel's vhost driver, which can be triggered by a specially crafted packet sent to the affected system. The vulnerability was publicly disclosed on November 29th, 2020 and assigned CVE-2020-28864. It affects multiple versions of the Linux kernel, including some long-term support (LTS) branches, making it a significant security concern for many organizations and users. Patches for the vulnerability were quickly released by the Linux kernel community, and vendors such as Red Hat and Ubuntu also provided updates to their respective distributions. If left unpatched, this vulnerability could have severe consequences for affected systems, potentially allowing attackers to install malware, steal sensitive data, or cause widespread disruption. Therefore, it is crucial for organizations to ensure that all vulnerable systems are updated to the latest patched version of the Linux kernel to mitigate the risk of exploitation.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Source Document References
Information about the CVE-2020-28864 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
a year ago
Close Quarters Encounters with Third Generation Malware Compels UK and Danish Municipalities to Remodel Vulnerability Management Safeguards