CVE-2020-15436

MEDIUM

Linux Kernel < 4.4.229 - Use After Free

Title source: rule
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2020-15436. PoCs published by Trinadh465.

AI-analyzed exploit summary The repository contains documentation files related to the Linux kernel, specifically for version 4.19.72, and does not include any exploit code or proof-of-concept for CVE-2020-15436. The files are primarily READMEs, configuration scripts, and administrative guides.

Description

Use-after-free vulnerability in fs/block_dev.c in the Linux kernel before 5.8 allows local users to gain privileges or cause a denial of service by leveraging improper access to a certain error field.

Exploits (1)

nomisec WRITEUP
by Trinadh465 · poc
https://github.com/Trinadh465/linux-4.19.72_CVE-2020-15436

The repository contains documentation files related to the Linux kernel, specifically for version 4.19.72, and does not include any exploit code or proof-of-concept for CVE-2020-15436. The files are primarily READMEs, configuration scripts, and administrative guides.

Classification
Writeup 90%
Attack Type
Other
Complexity
Trivial
Reliability
Theoretical
Target: Linux Kernel 4.19.72
No auth needed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Patch, Vendor Advisory x_refsource_misc
https://lkml.org/lkml/2020/6/7/379
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20201218-0002/

Scores

CVSS v3 6.7
EPSS 0.0093
EPSS Percentile 55.8%
Attack Vector LOCAL
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-416
Status published
Products (19)
broadcom/brocade_fabric_operating_system_firmware
linux/linux_kernel 2.6.38 - 4.4.229
netapp/a250_firmware
netapp/a700s_firmware
netapp/aff_500f_firmware
netapp/aff_8300_firmware
netapp/aff_8700_firmware
netapp/aff_a400_firmware
netapp/cloud_backup
netapp/fabric-attached_storage_a400_firmware
... and 9 more
Published Nov 23, 2020
Tracked Since Feb 18, 2026