Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2020-1045.NASL
HistoryJan 13, 2020 - 12:00 a.m.

EulerOS Virtualization for ARM 64 3.0.5.0 : grub2 (EulerOS-SA-2020-1045)

2020-01-1300:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

According to the version of the grub2 packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability :

  • A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.(CVE-2019-14865)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(132799);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/01");

  script_cve_id("CVE-2019-14865");

  script_name(english:"EulerOS Virtualization for ARM 64 3.0.5.0 : grub2 (EulerOS-SA-2020-1045)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization for ARM 64 host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the version of the grub2 packages installed, the EulerOS
Virtualization for ARM 64 installation on the remote host is affected
by the following vulnerability :

  - A flaw was found in the grub2-set-bootflag utility of
    grub2. A local attacker could run this utility under
    resource pressure (for example by setting RLIMIT),
    causing grub2 configuration files to be truncated and
    leaving the system unbootable on subsequent
    reboots.(CVE-2019-14865)

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2020-1045
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3764908c");
  script_set_attribute(attribute:"solution", value:
"Update the affected grub2 package.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-14865");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"patch_publication_date", value:"2020/01/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/01/13");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-efi-aa64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-efi-aa64-modules");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-tools-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-tools-minimal");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:3.0.5.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "3.0.5.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 3.0.5.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

flag = 0;

pkgs = ["grub2-common-2.02-62.h15.eulerosv2r8",
        "grub2-efi-aa64-2.02-62.h15.eulerosv2r8",
        "grub2-efi-aa64-modules-2.02-62.h15.eulerosv2r8",
        "grub2-tools-2.02-62.h15.eulerosv2r8",
        "grub2-tools-extra-2.02-62.h15.eulerosv2r8",
        "grub2-tools-minimal-2.02-62.h15.eulerosv2r8"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "grub2");
}
VendorProductVersionCPE
huaweieulerosgrub2-commonp-cpe:/a:huawei:euleros:grub2-common
huaweieulerosgrub2-efi-aa64p-cpe:/a:huawei:euleros:grub2-efi-aa64
huaweieulerosgrub2-efi-aa64-modulesp-cpe:/a:huawei:euleros:grub2-efi-aa64-modules
huaweieulerosgrub2-toolsp-cpe:/a:huawei:euleros:grub2-tools
huaweieulerosgrub2-tools-extrap-cpe:/a:huawei:euleros:grub2-tools-extra
huaweieulerosgrub2-tools-minimalp-cpe:/a:huawei:euleros:grub2-tools-minimal
huaweieulerosuvpcpe:/o:huawei:euleros:uvp:3.0.5.0

Related

ubuntucve 2
cve 2
nvd 2
nessus 21
debiancve 2
oraclelinux 2
redhatcve 2
redhat 1
prion 2
openvas 10
cvelist 2
fedora 1
vulnrichment 1
amazon 2
mageia 1
ubuntucve
ubuntucve
CVE-2019-14865
2019-11-29 00:00:00
CVE-2024-1048
2024-02-06 00:00:00
cve
cve
CVE-2019-14865
2019-11-29 10:15:12
CVE-2024-1048
2024-02-06 18:15:59
nvd
nvd
CVE-2019-14865
2019-11-29 10:15:12
CVE-2024-1048
2024-02-06 18:15:59
nessus
nessus
Fedora 30 : 1:grub2 (2019-69da274284)
2019-12-27 00:00:00
RHEL 8 : grub2 (RHSA-2020:0335)
2020-02-05 00:00:00
Oracle Linux 8 : grub2 (ELSA-2020-0335)
2020-02-10 00:00:00
debiancve
debiancve
CVE-2019-14865
2019-11-29 10:15:12
CVE-2024-1048
2024-02-06 18:15:59
oraclelinux
oraclelinux
grub2 security update
2019-12-17 00:00:00
grub2 security update
2020-02-07 00:00:00
redhatcve
redhatcve
CVE-2019-14865
2019-11-26 03:47:55
CVE-2024-1048
2024-02-06 17:30:15
redhat
redhat
(RHSA-2020:0335) Moderate: grub2 security update
2020-02-04 12:38:47
prion
prion
Default configuration
2019-11-29 10:15:00
Design/Logic Flaw
2024-02-06 18:15:00
openvas
openvas
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2020-1009)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2020-1045)
2020-01-23 00:00:00
Fedora Update for grub2 FEDORA-2019-e99ebf23c8
2020-01-09 00:00:00
cvelist
cvelist
CVE-2019-14865
2019-11-29 09:50:12
CVE-2024-1048 Grub2: grub2-set-bootflag can be abused by local (pseudo-)users
2024-02-06 17:30:35
fedora
fedora
[SECURITY] Fedora 31 Update: grub2-2.02-103.fc31
2019-11-29 00:55:14
vulnrichment
vulnrichment
CVE-2024-1048 Grub2: grub2-set-bootflag can be abused by local (pseudo-)users
2024-02-06 17:30:35
amazon
amazon
Low: grub2
2024-03-13 20:26:00
Medium: grub2
2021-07-14 20:30:00
mageia
mageia
Updated grub2 packages fix security vulnerabilities
2024-03-28 06:52:55

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

4.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON
Related for EULEROS_SA-2020-1045.NASL
ubuntucve2cve2nvd2nessus21debiancve2oraclelinux2redhatcve2redhat1prion2openvas10cvelist2fedora1vulnrichment1amazon2mageia1