CVE-2025-4002 in RefindPlusالمعلومات

الملخص

بحسب MITRE • 28/04/2025

A vulnerability was found in RefindPlusRepo RefindPlus 0.14.2.AB and classified as problematic. Affected by this issue is the function GetDebugLogFile of the file Library/MemLogLib/BootLog.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The patch is identified as d2143a1e2deefddd9b105fb7160763c4f8d47ea2. It is recommended to apply a patch to fix this issue.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

VulDB

إفشاء

28/04/2025

الاعتدال

تمت الموافقة

إدخال

VDB-306338

CPE

جاهز

CWE

CWE-476 (مؤكد)

CVSS

5.5 (CNA)

EPSS

0.00093

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-4002
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-4002
CVE Details	https://www.cvedetails.com/cve/CVE-2025-4002/

التالي ▸نظرة عامة ◂ السابق

Interested in the pricing of exploits?

See the underground prices here!