CVE-2020-36790

MEDIUM EPSS 3.7%
Published May 1, 20251y ago · Modified Jun 17, 20261w ago
5.5 CVSS 3.1
Medium
Find Similar
Published May 1, 2025 1y ago
Last Modified Jun 17, 2026 1w ago

Description

In the Linux kernel, the following vulnerability has been resolved: nvmet: fix a memory leak We forgot to free new_model_number

CVSS Details

Base Score
5.5
Exploitability
1.8
Impact
3.6
Vector string
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector Local
Attack Complexity Low
Privileges Required Low
User Interaction None
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

EPSS Exploit Probability
3.7% percentile
Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-401

Affected Products 3

VendorProductVersionRange
linuxlinux_kernel*≥5.7  –  <5.8.6
linuxlinux_kernel5.9any
linuxlinux_kernel5.9any

References 2

  • git.kernel.org https://git.kernel.org/stable/c/227064b2ca9e62270ed445665ae849c73f0dfb2c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/382fee1a8b623e2546a3e15e80517389e0e0673e
    Patch

Remediation

  • git.kernel.org https://git.kernel.org/stable/c/227064b2ca9e62270ed445665ae849c73f0dfb2c
    Patch
  • git.kernel.org https://git.kernel.org/stable/c/382fee1a8b623e2546a3e15e80517389e0e0673e
    Patch