{"id":"CVE-2020-28588","details":"An information disclosure vulnerability exists in the /proc/pid/syscall functionality of Linux Kernel 5.1 Stable and 5.4.66. More specifically, this issue has been introduced in v5.1-rc4 (commit 631b7abacd02b88f4b0795c08b54ad4fc3e7c7c0) and is still present in v5.10-rc4, so it’s likely that all versions in between are affected. An attacker can read /proc/pid/syscall to trigger this vulnerability, which leads to the kernel leaking memory contents.","modified":"2026-03-14T08:23:36.140371Z","published":"2021-05-10T19:15:08.017Z","related":["MGASA-2021-0030","MGASA-2021-0031"],"references":[{"type":"EVIDENCE","url":"https://talosintelligence.com/vulnerability_reports/TALOS-2020-1211"}],"affected":[{"database_specific":{"source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-28588.json","unresolved_ranges":[{"events":[{"introduced":"0"},{"last_affected":"5.4.66"}]},{"events":[{"introduced":"0"},{"last_affected":"5.9.8"}]},{"events":[{"introduced":"0"},{"last_affected":"5.10-rc4"}]}]}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"}]}