Lucene search

K
cvelistRedhatCVELIST:CVE-2021-20225
HistoryMar 03, 2021 - 4:44 p.m.

CVE-2021-20225

2021-03-0316:44:26
CWE-787
redhat
www.cve.org

7.5 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.

CNA Affected

[
  {
    "product": "grub2",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "grub 2.06"
      }
    ]
  }
]