CVE-2025-4002 in RefindPlus信息

摘要

由 MITRE • 2025-04-28

A vulnerability was found in RefindPlusRepo RefindPlus 0.14.2.AB and classified as problematic. Affected by this issue is the function GetDebugLogFile of the file Library/MemLogLib/BootLog.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The patch is identified as d2143a1e2deefddd9b105fb7160763c4f8d47ea2. It is recommended to apply a patch to fix this issue.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

负责

VulDB

披露

2025-04-28

管理

已接受

条目

VDB-306338

CPE

准备好

CWE

CWE-476 (已确认)

CVSS

5.5 (CNA)

EPSS

0.00093

KEV

否

活动

非常低

来源

MITRE	https://www.cve.org/CVERecord?id=CVE-2025-4002
NVD	https://nvd.nist.gov/vuln/detail/CVE-2025-4002
CVE Details	https://www.cvedetails.com/cve/CVE-2025-4002/

◂ 上一步一览下一步 ▸

Might our Artificial Intelligence support you?

Check our Alexa App!