Skip to main content

Mondoo Vulnerability Intelligence

Curated by Mondoo Research, enhanced with AI

Resources

Search Vulnerabilities
Trending CVEs
Browse Ecosystems
Terminology
Blog

Open Source

cnquery
cnspec

Star us on GitHub!

Company

Mondoo Platform
About
Contact

© 2026 Mondoo, Inc.

Privacy Policy Terms of Service Imprint

Vulnerability Intelligence

Vulnerability IntelligenceCVE-2020-14304

CVE-2020-14304

MEDIUM4.4

A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device

Published Sep 15, 2020

Modified 1 years ago

Details

A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.

References

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=960702

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14304

https://www.cve.org/CVERecord?id=CVE-2020-14304

CVSS Analysis

CVSS v3.1

4.4

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

HighPR:H

User Interaction

NoneUI:N

Scope

Scope

UnchangedS:U

Impact

Confidentiality

HighC:H

Integrity

NoneI:N

Availability

NoneA:N

4.4/CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Weakness Type (CWE)

Other

Ecosystems

Timeline

PublishedSep 15, 2020

ModifiedAug 4, 2024

CVE-2020-14304 | Mondoo Vulnerability Intelligence