CVE-2020-27779 in grub2المعلومات

الملخص

بحسب MITRE • 04/03/2021

A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub's memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

حجز

27/10/2020

إفشاء

04/03/2021

الاعتدال

تمت الموافقة

إدخال

VDB-170618

EPSS

0.00390

KEV

لا

النشاطات

منخفض جدًا

المصادر

Interested in the pricing of exploits?

See the underground prices here!