Lucene search

K

Redhat.comRH:CVE-2023-4692

HistoryOct 03, 2023 - 6:24 p.m.

CVE-2023-4692

2023-10-0318:24:36

redhat.com

access.redhat.com

26

grub2

ntfs filesystem

out-of-bounds write

heap metadata corruption

uefi firmware

arbitrary code execution

secure boot protection bypass

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.7%

An out-of-bounds write flaw was found in grub2’s NTFS filesystem driver. This issue may allow an attacker to present a specially crafted NTFS filesystem image, leading to grub’s heap metadata corruption. In some circumstances, the attack may also corrupt the UEFI firmware heap metadata. As a result, arbitrary code execution and secure boot protection bypass may be achieved.

References

bugzilla.redhat.com/show_bug.cgi?id=2236613

dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager/

lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html

nvd.nist.gov/vuln/detail/CVE-2023-4692

seclists.org/oss-sec/2023/q4/37

www.cve.org/CVERecord?id=CVE-2023-4692

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

6.4 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.7%

Related for RH:CVE-2023-4692

nessus36 openvas25 ubuntu1 debian2 redos1 osv6 fedora3 amazon1 redhatcve1 redhat2 almalinux2 rocky1 oraclelinux2 debiancve2 cbl_mariner4 ubuntucve2 prion2 veracode2 cvelist2 photon3 cve2 nvd2 mageia1 hp1