CVE-2020-2732 — Sensitive Information Exposure in Linux
Severity
6.8MEDIUMNVD
OSV7.5OSV5.5OSV4.6
EPSS
0.4%
top 36.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedApr 8
Latest updateMay 24
Description
A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled. Under some circumstances, an L2 guest may trick the L0 guest into accessing sensitive L1 resources that should be inaccessible to the L2 guest.
CVSS vector
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:NExploitability: 2.3 | Impact: 4.0
Affected Packages4 packages
Also affects: Enterprise Linux 7.0, 8.0
Patches
🔴Vulnerability Details
6GHSA▶
GHSA-pqrp-hrrg-q69p: A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled↗2022-05-24
OSV▶
CVE-2020-2732: A flaw was discovered in the way that the KVM hypervisor handled instruction emulation for an L2 guest when nested virtualisation is enabled↗2020-04-08
OSV
▶
OSV▶
linux, linux-aws, linux-gcp, linux-gcp-5.3, linux-gke-5.3, linux-hwe, linux-kvm, linux-oracle, linux-raspi2, linux-raspi2-5.3, linux-azure, linux-azure-5.3 vulnerabilities↗2020-03-25
OSV▶
linux, linux-aws, linux-aws-hwe, linux-gcp, linux-gke-4.15, linux-hwe, linux-kvm, linux-oem, linux-oracle, linux-raspi2, linux-snapdragon, linux-azure vulnerabilities↗2020-03-25
📋Vendor Advisories
7💬Community
3Bugzilla▶
CVE-2020-12692 openstack-keystone: failure to check signature TTL of the EC2 credential auth method↗2020-05-07
Bugzilla▶
CVE-2020-2732 kernel: kvm: nVMX: L2 guest may trick the L0 hypervisor to access sensitive L1 resources [fedora-all]↗2020-02-25
Bugzilla▶
CVE-2020-2732 Kernel: kvm: nVMX: L2 guest may trick the L0 hypervisor to access sensitive L1 resources↗2020-02-20