What is CVE-2020-15292?

CVE-2020-15292 is a medium-severity vulnerability in Bitdefender Hypervisor Introspection, classified under Improper Input Validation. CVSS score: 5.5/10. Published 2020-12-17.

How severe is CVE-2020-15292?

Medium severity. CVSS v3 base score is 5.5 out of 10.

Improper input validation in Bitdefender Hypervisor Introspection

CVE-2020-15292

Lack of validation on data read from guest memory in IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol and IntLixTaskDumpTree may lead to out-of-bounds read or it could cause DoS due to integer-overflor (I…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.000 (14.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.5 (Medium). Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H.

Affected products

Bitdefender Hypervisor Introspection — versions unspecified

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

www.bitdefender.com/support/security-advisories/lack-validation-data-read-guest… (x_refsource_MISC)

Frequently asked questions

What is CVE-2020-15292?: CVE-2020-15292 is a medium-severity vulnerability in Bitdefender Hypervisor Introspection, classified under Improper Input Validation. CVSS score: 5.5/10. Published 2020-12-17.
How severe is CVE-2020-15292?: Medium severity. CVSS v3 base score is 5.5 out of 10.