Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it could cause DoS due to integer-overflor (IntPeGetDirectory), TOCTOU (IntPeParseUnwindData) or insufficient validations.
References
Link | Resource |
---|---|
https://www.bitdefender.com/support/security-advisories/lack-validation-data-read-guest-memory-bitdefender-hvi-va-9333/ | Patch Vendor Advisory |
Configurations
History
No history.
Information
Published : 2020-12-17 17:15
Updated : 2024-02-28 18:08
NVD link : CVE-2020-15292
Mitre link : CVE-2020-15292
CVE.ORG link : CVE-2020-15292
JSON object : View
Products Affected
bitdefender
- hypervisor_introspection
CWE
CWE-20
Improper Input Validation