CVE-2020-25632 in grub2info

Zusammenfassung

von MITRE • 04.03.2021

A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of Secure Boot protections. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservieren

16.09.2020

Veröffentlichung

04.03.2021

Moderieren

akzeptiert

Eintrag

VDB-170615

CPE

bereit

EPSS

0.01152

KEV

nein

Aktivitäten

very low

Quellen

Do you need the next level of professionalism?

Upgrade your account now!