Skip to content

A denial of service vulnerability exists when Microsoft...

Low severity Unreviewed Published May 24, 2022 to the GitHub Advisory Database • Updated Jan 9, 2024

Package

No package listedSuggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

A denial of service vulnerability exists when Microsoft Hyper-V on a host server fails to properly validate specific malicious data from a user on a guest operating system.To exploit the vulnerability, an attacker who already has a privileged account on a guest operating system, running as a virtual machine, could run a specially crafted application.The security update addresses the vulnerability by resolving the conditions where Hyper-V would fail to handle these requests., aka 'Windows Hyper-V Denial of Service Vulnerability'. This CVE ID is unique from CVE-2020-0890.

References

Published by the National Vulnerability Database Sep 11, 2020
Published to the GitHub Advisory Database May 24, 2022
Last updated Jan 9, 2024

Severity

Low

EPSS score

0.049%
(20th percentile)

CVE ID

CVE-2020-0904

GHSA ID

GHSA-m37p-rm58-x4hc

Source code

No known source code

Dependabot alerts are not supported on this advisory because it does not have a package from a supported ecosystem with an affected and fixed version.

Learn more about GitHub language support

Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.