CVE-2020-15292

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description The issue is related to a lack of validation on data read from guest memory in several functions, including IntPeGetDirectory, IntPeParseUnwindData, IntLogExceptionRecord, IntKsymExpandSymbol, and IntLixTaskDumpTree. This lack of validation may lead to out-of-bounds read or cause a Denial of Service (DoS) due to integer overflow in IntPeGetDirectory, Time-of-Check-to-Time-of-Use (TOCTOU) in IntPeParseUnwindData, or insufficient validations.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.