CVE-2020-14360

CWE-119 — Buffer Overflow9 documents8 sources

Severity

7.8HIGH

EPSS

0.1%

top 71.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

X.org X Server

Timeline

PublishedJan 20

Latest updateMay 24

Description

A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds access in the XkbSetMap function may lead to a privilege escalation vulnerability. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

▶NVDx.org/x_server< 1.20.10

▶Debianxorg-server< 2:1.20.10-1+3

▶CVEListV5xorg-x11-serverxorg-x11-server 1.20.10

Patches

Patch: bugzilla.redhat.com ↗Patch: bugzilla.redhat.com ↗

🔴Vulnerability Details

GHSA

GHSA-p2mv-74m8-hvq8: A flaw was found in the X↗2022-05-24

▶

OSV

CVE-2020-14360: A flaw was found in the X↗2021-01-20

▶

CVEList

CVE-2020-14360: A flaw was found in the X↗2021-01-20

▶

📋Vendor Advisories

Ubuntu

X.Org X Server vulnerabilities↗2020-12-07

▶

Ubuntu

X.Org X Server vulnerabilities↗2020-12-01

▶

Red Hat

xorg-x11-server: Out-of-bounds access in XkbSetMap function↗2020-12-01

▶

Debian

CVE-2020-14360: xorg-server - A flaw was found in the X.Org Server before version 1.20.10. An out-of-bounds ac...↗2020

▶

💬Community

Bugzilla

CVE-2020-14360 xorg-x11-server: Out-of-bounds access in XkbSetMap function↗2020-08-17

▶