Home

CVE-2020-2732

Description

A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.

Risk Information

Base Score
6.8
MODERATE
Vector
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
EPSS Score
Exploitation Probability
0.438

Associated Vulnerability

VulnerabilityOS Platform
Linux kernel (USN-4300-1) linux-image-aws_5.3.0.1013.15_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-gcp_5.3.0.1014.15_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-gke_5.3.0.1014.15_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-kvm_5.3.0.1012.14_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-oracle_5.3.0.1011.12_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-generic_5.3.0.42.36_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-gke-5.3_5.3.0.1014.4_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-virtual_5.3.0.42.36_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-gcp-edge_5.3.0.1014.13_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-lowlatency_5.3.0.42.36_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-1012-kvm_5.3.0-1012.13_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-1013-aws_5.3.0-1013.14_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-1014-gcp_5.3.0-1014.15_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-1014-gcp_5.3.0-1014.15~18.04.1_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-1014-gke_5.3.0-1014.15~18.04.1_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-42-generic_5.3.0-42.34_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-42-generic_5.3.0-42.34~18.04.1_i386.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-42-generic_5.3.0-42.34~18.04.1_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-1011-oracle_5.3.0-1011.12_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-generic-hwe-18.04_5.3.0.42.99_i386.debLinux
Linux kernel (USN-4300-1) linux-image-generic-hwe-18.04_5.3.0.42.99_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-virtual-hwe-18.04_5.3.0.42.99_i386.debLinux
Linux kernel (USN-4300-1) linux-image-virtual-hwe-18.04_5.3.0.42.99_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-42-lowlatency_5.3.0-42.34_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-42-lowlatency_5.3.0-42.34~18.04.1_i386.debLinux
Linux kernel (USN-4300-1) linux-image-5.3.0-42-lowlatency_5.3.0-42.34~18.04.1_amd64.debLinux
Linux kernel (USN-4300-1) linux-image-lowlatency-hwe-18.04_5.3.0.42.99_i386.debLinux
Linux kernel (USN-4300-1) linux-image-lowlatency-hwe-18.04_5.3.0.42.99_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-4301-1) linux-image-gcp_5.0.0.1033.37_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-4301-1) linux-image-oracle_5.0.0.1013.13_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-4301-1) linux-image-gke-5.0_5.0.0.1032.20_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-4301-1) linux-image-aws-edge_5.0.0.1027.41_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-4301-1) linux-image-5.0.0-1027-aws_5.0.0-1027.30_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-4301-1) linux-image-5.0.0-1032-gke_5.0.0-1032.33_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-4301-1) linux-image-5.0.0-1033-gcp_5.0.0-1033.34_amd64.debLinux
Linux kernel for Amazon Web Services (AWS) systems (USN-4301-1) linux-image-5.0.0-1013-oracle_5.0.0-1013.18_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-aws_4.15.0.1063.64_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-gcp_4.15.0.1058.72_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-gke_4.15.0.1055.59_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-gke_4.15.0.1058.72_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-kvm_4.15.0.1056.56_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-oem_4.15.0.91.101_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-aws-hwe_4.15.0.1063.63_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-generic_4.15.0.91.83_i386.debLinux
Linux kernel (USN-4302-1) linux-image-generic_4.15.0.91.83_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-virtual_4.15.0.91.83_i386.debLinux
Linux kernel (USN-4302-1) linux-image-virtual_4.15.0.91.83_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-gke-4.15_4.15.0.1055.59_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-lowlatency_4.15.0.91.83_i386.debLinux
Linux kernel (USN-4302-1) linux-image-lowlatency_4.15.0.91.83_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-aws-lts-18.04_4.15.0.1063.64_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-1055-gke_4.15.0-1055.58_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-1056-kvm_4.15.0-1056.57_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-1058-gcp_4.15.0-1058.62_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-1063-aws_4.15.0-1063.67_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-1063-aws_4.15.0-1063.67~16.04.1_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-91-generic_4.15.0-91.92_i386.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-91-generic_4.15.0-91.92_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-91-generic_4.15.0-91.92~16.04.1_i386.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-91-generic_4.15.0-91.92~16.04.1_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-generic-hwe-16.04_4.15.0.91.101_i386.debLinux
Linux kernel (USN-4302-1) linux-image-generic-hwe-16.04_4.15.0.91.101_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-virtual-hwe-16.04_4.15.0.91.101_i386.debLinux
Linux kernel (USN-4302-1) linux-image-virtual-hwe-16.04_4.15.0.91.101_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-91-lowlatency_4.15.0-91.92_i386.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-91-lowlatency_4.15.0-91.92_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-91-lowlatency_4.15.0-91.92~16.04.1_i386.debLinux
Linux kernel (USN-4302-1) linux-image-4.15.0-91-lowlatency_4.15.0-91.92~16.04.1_amd64.debLinux
Linux kernel (USN-4302-1) linux-image-lowlatency-hwe-16.04_4.15.0.91.101_i386.debLinux
Linux kernel (USN-4302-1) linux-image-lowlatency-hwe-16.04_4.15.0.91.101_amd64.debLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-4.12.14-122.20.1.x86_64.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-4.12.14-122.20.1.x86_64.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-base-debuginfo-4.12.14-122.20.1.x86_64.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debuginfo-4.12.14-122.20.1.x86_64.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-debugsource-4.12.14-122.20.1.x86_64.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-4.12.14-122.20.1.x86_64.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-default-devel-debuginfo-4.12.14-122.20.1.x86_64.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-devel-4.12.14-122.20.1.noarch.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-macros-4.12.14-122.20.1.noarch.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-source-4.12.14-122.20.1.noarch.rpmLinux
SUSE-SU-2020:1142-1(SUSE Linux Enterprise Server 12-SP5 ) kernel-syms-4.12.14-122.20.1.x86_64.rpmLinux
kernel Security Update (ALAS-2020-1405) kernel-livepatch-4.14.173-137.228-1.0-0.amzn2.x86_64.rpmLinux
Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-2732)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234