CVE-2020-15292

Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it could cause DoS due to integer-overflor (IntPeGetDirectory), TOCTOU (IntPeParseUnwindData) or insufficient validations.
Configurations

Configuration 1 (hide)

cpe:2.3:a:bitdefender:hypervisor_introspection:*:*:*:*:*:*:*:*

History

21 Nov 2024, 05:05

Type Values Removed Values Added
References () https://www.bitdefender.com/support/security-advisories/lack-validation-data-read-guest-memory-bitdefender-hvi-va-9333/ - Patch, Vendor Advisory () https://www.bitdefender.com/support/security-advisories/lack-validation-data-read-guest-memory-bitdefender-hvi-va-9333/ - Patch, Vendor Advisory

Information

Published : 2020-12-17 17:15

Updated : 2024-11-21 05:05


NVD link : CVE-2020-15292

Mitre link : CVE-2020-15292

CVE.ORG link : CVE-2020-15292


JSON object : View

Products Affected

bitdefender

  • hypervisor_introspection
CWE
CWE-20

Improper Input Validation