CVE-2020-27674

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2020-27674

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2020-27674.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2020-27674

Downstream

ALPINE-CVE-2020-27674

DEBIAN-CVE-2020-27674

DSA-4804-1

SUSE-SU-2020:14557-1

SUSE-SU-2020:3611-1

SUSE-SU-2020:3615-1

SUSE-SU-2020:3627-1

SUSE-SU-2020:3631-1

SUSE-SU-2020:3653-1

SUSE-SU-2020:3742-1

UBUNTU-CVE-2020-27674

openSUSE-SU-2020:2162-1

openSUSE-SU-2020:2192-1

openSUSE-SU-2024:11520-1

Related

Published

2020-10-22T21:15:14Z

Modified

2025-08-09T20:01:27Z

Severity

5.3 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVSS Calculator

Summary

[none]

Details

An issue was discovered in Xen through 4.14.x allowing x86 PV guest OS users to gain guest OS privileges by modifying kernel memory contents, because invalidation of TLB entries is mishandled during use of an INVLPG-like attack technique.

References

Affected packages