CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
86.0%
A flaw was found in the Linux kernel in versions before 5.9-rc7. Traffic
between two Geneve endpoints may be unencrypted when IPsec is configured to
encrypt traffic for the specific UDP port used by the GENEVE tunnel
allowing anyone between the two endpoints to read the traffic unencrypted.
The main threat from this vulnerability is to data confidentiality.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | linux | < 4.15.0-126.129 | UNKNOWN |
ubuntu | 20.04 | noarch | linux | < 5.4.0-56.62 | UNKNOWN |
ubuntu | 16.04 | noarch | linux | < 4.4.0-197.229 | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws | < 4.15.0-1088.93 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-aws | < 5.4.0-1030.31 | UNKNOWN |
ubuntu | 14.04 | noarch | linux-aws | < 4.4.0-1082.86 | UNKNOWN |
ubuntu | 16.04 | noarch | linux-aws | < 4.4.0-1118.132 | UNKNOWN |
ubuntu | 18.04 | noarch | linux-aws-5.4 | < 5.4.0-1030.31~18.04.1 | UNKNOWN |
ubuntu | 16.04 | noarch | linux-aws-hwe | < 4.15.0-1088.93~16.04.1 | UNKNOWN |
ubuntu | 20.04 | noarch | linux-azure | < 5.4.0-1032.33 | UNKNOWN |
git.kernel.org/linus/34beb21594519ce64a55a498c2fe7d567bc1ca20
launchpad.net/bugs/cve/CVE-2020-25645
nvd.nist.gov/vuln/detail/CVE-2020-25645
security-tracker.debian.org/tracker/CVE-2020-25645
ubuntu.com/security/notices/USN-4657-1
ubuntu.com/security/notices/USN-4658-1
ubuntu.com/security/notices/USN-4660-1
ubuntu.com/security/notices/USN-4912-1
www.cve.org/CVERecord?id=CVE-2020-25645
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
Percentile
86.0%