{"id":"CVE-2020-14304","details":"A memory disclosure flaw was found in the Linux kernel's ethernet drivers, in the way it read data from the EEPROM of the device. This flaw allows a local user to read uninitialized values from the kernel memory. The highest threat from this vulnerability is to confidentiality.","modified":"2026-03-15T21:45:06.898787Z","published":"2020-09-15T20:15:13.103Z","references":[{"type":"REPORT","url":"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=960702"},{"type":"REPORT","url":"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2020-14304"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-14304.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"4.9.210-1"}]},{"events":[{"introduced":"0"},{"last_affected":"4.19.118-2"}]},{"events":[{"introduced":"0"},{"last_affected":"5.6.7-1"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N"}]}