CVE-2020-10255

CVSS V2 High 9.3 CVSS V3 Critical 9
Description
Modern DRAM chips (DDR4 and LPDDR4 after 2015) are affected by a vulnerability in deployment of internal mitigations against RowHammer attacks known as Target Row Refresh (TRR), aka the TRRespass issue. To exploit this vulnerability, the attacker needs to create certain access patterns to trigger bit flips on affected memory modules, aka a Many-sided RowHammer attack. This means that, even when chips advertised as RowHammer-free are used, attackers may still be able to conduct privilege-escalation attacks against the kernel, conduct privilege-escalation attacks against the Sudo binary, and achieve cross-tenant virtual-machine access by corrupting RSA keys. The issue affects chips produced by SK Hynix, Micron, and Samsung. NOTE: tracking DRAM supply-chain issues is not straightforward because a single product model from a single vendor may use DRAM chips from different manufacturers.
Overview
  • CVE ID
  • CVE-2020-10255
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2020-03-10T16:15:15
  • Last Modified Date
  • 2020-03-16T15:23:07
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:h:micron:ddr4_sdram:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:micron:lpddr4:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:samsung:ddr4:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:samsung:lpddr4:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:skhynix:ddr4_sdram:-:*:*:*:*:*:*:* 1 OR
cpe:2.3:h:skhynix:lpddr4:-:*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:M/Au:N/C:C/I:C/A:C
  • Access Vector
  • NETWORK
  • Access Compatibility
  • MEDIUM
  • Authentication
  • NONE
  • Confidentiality Impact
  • COMPLETE
  • Integrity Impact
  • COMPLETE
  • Availability Impact
  • COMPLETE
  • Base Score
  • 9.3
  • Severity
  • HIGH
  • Exploitability Score
  • 8.6
  • Impact Score
  • 10
CVSS Version 3
  • Version
  • 3.1
  • Vector String
  • CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
  • Attack Vector
  • NETWORK
  • Attack Compatibility
  • HIGH
  • Privileges Required
  • NONE
  • User Interaction
  • NONE
  • Scope
  • CHANGED
  • Confidentiality Impact
  • HIGH
  • Availability Impact
  • HIGH
  • Base Score
  • 9
  • Base Severity
  • CRITICAL
  • Exploitability Score
  • 2.2
  • Impact Score
  • 6
History
Created Old Value New Value Data Type Notes
2022-05-10 16:47:16 Added to TrackCVE
2022-12-04 12:18:35 2020-03-10T16:15Z 2020-03-10T16:15:15 CVE Published Date updated
2022-12-04 12:18:35 2020-03-16T15:23:07 CVE Modified Date updated
2022-12-04 12:18:35 Analyzed Vulnerability Status updated