Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

421 matches found

RedHat Linux
RedHat Linuxadded 2026/03/17 6:20 p.m.3 views

grub2: Missing unregister call for gettext command may lead to use-after-free

A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, causing the applicati...

7.8CVSS5.8AI score0.0019EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/03/17 6:12 p.m.4 views

grub2: Missing unregister call for gettext command may lead to use-after-free

A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, causing the applicati...

7.8CVSS5.8AI score0.0019EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2026/03/16 7:41 p.m.3 views

Moderate: Red Hat Security Advisory: grub2 security update

An update for grub2 is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.8CVSS5.8AI score0.0019EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2026/03/16 12:0 a.m.1 views

RHEL 8 : grub2 (RHSA-2026:4648)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:4648 advisory. The grub2 packages provide version 2 of the Grand Unified Boot Loader GRUB, a highly configurable and customizable boot loader with modular...

7.8CVSS5.9AI score0.0019EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2026/03/04 1:56 a.m.2 views

CVE-2025-47378

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain...

7.1CVSS5.9AI score0.0007EPSS
Exploits0References1
NVD
NVDadded 2026/03/02 5:16 p.m.3 views

CVE-2025-47378

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain...

7.1CVSS0.0007EPSS
Exploits0References1
EUVD
EUVDadded 2026/03/02 4:53 p.m.5 views

EUVD-2025-208187

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain...

7.1CVSS5.9AI score0.0007EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/03/02 4:53 p.m.3 views

CVE-2025-47378

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain...

7.1CVSS5.9AI score0.0007EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2026/03/02 4:53 p.m.4 views

CVE-2025-47378 Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain...

7.1CVSS5.9AI score0.0007EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/03/02 4:53 p.m.32 views

CVE-2025-47378 Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS

Cryptographic Issue when a shared VM reference allows HLOS to boot loader and access cert chain...

7.1CVSS0.0007EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/03/02 12:0 a.m.4 views

PT-2026-22643

Name of the Vulnerable Software and Affected Versions versions prior to 2025-47378 Description A cryptographic issue exists when a shared VM reference allows HLOS to access the boot loader and certificate chain. This could potentially compromise the system's security. Recommendations At the momen...

7.1CVSS5.9AI score0.0007EPSS
Exploits0References5
OSV
OSVadded 2026/02/17 12:34 p.m.6 views

CLSA-2026-1771331675 grub2: Fix of CVE-2025-61662

CVE-2025-61662: fix use-after-free in gettext/gettext due to unregistered gettext command on module unload...

7.8CVSS5.8AI score0.0019EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/16 7:30 p.m.4 views

CVE-2025-29949

Insufficient input parameter sanitization in AMD Secure Processor ASP Boot Loader legacy recovery mode only could allow an attacker to write out-of-bounds to corrupt Secure DRAM potentially resulting in denial of service...

4.8CVSS5.5AI score0.00134EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/02/16 7:30 p.m.5 views

CVE-2025-48515

Insufficient parameter sanitization in AMD Secure Processor ASP Boot Loader could allow an attacker with access to SPIROM upgrade to overwrite the memory, potentially resulting in arbitrary code execution...

5.4CVSS5.8AI score0.00126EPSS
Exploits0References1
NVD
NVDadded 2026/02/10 8:16 p.m.6 views

CVE-2025-48515

Insufficient parameter sanitization in AMD Secure Processor ASP Boot Loader could allow an attacker with access to SPIROM upgrade to overwrite the memory, potentially resulting in arbitrary code execution...

5.4CVSS0.00126EPSS
Exploits0References1
NVD
NVDadded 2026/02/10 8:16 p.m.3 views

CVE-2025-29949

Insufficient input parameter sanitization in AMD Secure Processor ASP Boot Loader legacy recovery mode only could allow an attacker to write out-of-bounds to corrupt Secure DRAM potentially resulting in denial of service...

4.8CVSS0.00134EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2026/02/10 7:49 p.m.3 views

CVE-2025-48515

Insufficient parameter sanitization in AMD Secure Processor ASP Boot Loader could allow an attacker with access to SPIROM upgrade to overwrite the memory, potentially resulting in arbitrary code execution...

5.4CVSS6AI score0.00126EPSS
Exploits0References2
CVE
CVEadded 2026/02/10 7:49 p.m.18 views

CVE-2025-48515

CVE-2025-48515 concerns the AMD Secure Processor (ASP) Boot Loader. The provided documents describe insufficient parameter sanitization that could allow an attacker with access to a SPI ROM upgrade to overwrite memory, potentially enabling arbitrary code execution. The PT-2026-7464 entry reiterat...

5.4CVSS6AI score0.00126EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/02/10 7:49 p.m.5 views

CVE-2025-48515

Insufficient parameter sanitization in AMD Secure Processor ASP Boot Loader could allow an attacker with access to SPIROM upgrade to overwrite the memory, potentially resulting in arbitrary code execution...

5.4CVSS6AI score0.00126EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/02/10 7:49 p.m.22 views

CVE-2025-48515

Insufficient parameter sanitization in AMD Secure Processor ASP Boot Loader could allow an attacker with access to SPIROM upgrade to overwrite the memory, potentially resulting in arbitrary code execution...

5.4CVSS0.00126EPSS
Exploits0References1
Rows per page
Query Builder