Lucene search
K

59 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.7 views

Oracle Linux 7 : grub2 (ELSA-2026-5233)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-5233 advisory. - Unregister gettext command on module unload CVE-2025-61662Orabug: 39112125 - Fix OOB write in grubnetsearchconfigfile CVE-2025-0624 Orabug: 37770226 - Add to...

8.6CVSS6.9AI score0.01373EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 7 : grub2-2.02-0.87.11.0.1.el7.AXS7 (AXSA:2022-4404:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-4404:04 advisory. grub2: Integer underflow in grubnetrecvip4packets CVE-2022-28733 Tenable has extracted the preceding description block directly from the MiracleLinux securit...

8.1CVSS8.3AI score0.01284EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 2: grub2 (TSSA-2022:0288)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0288 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

8.1CVSS7.3AI score0.01284EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/10/09 12:0 a.m.23 views

CentOS 7 : grub2 (RHSA-2022:8900)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:8900 advisory. - Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen...

8.1CVSS7.5AI score0.01284EPSS
Exploits0References2
OSV
OSV
added 2024/08/21 7:58 p.m.16 views

CLSA-2024-1724266264 grub2: Fix of 12 CVEs

Fix package version number - Use CloudLinux vendor cert - Make this package installable only on a system having Cloudlinux signed components: grub2 and kernel - Add patches from centos-8.5 ELS: - CVE-2021-3695: out-of-bounds write in the heap area by a crafted 16-bit grayscale PNG image -...

8.6CVSS7.2AI score0.01588EPSS
Exploits2References1
Tenable Nessus
Tenable Nessus
added 2024/07/03 12:0 a.m.22 views

CBL Mariner 2.0 Security Update: grub2 (CVE-2022-28733)

The version of grub2 installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-28733 advisory. - Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in...

8.1CVSS7.5AI score0.01284EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2024/03/19 5:21 p.m.21 views

CVE-2022-28733 affecting package grub2 for versions less than 2.06-14

CVE-2022-28733 affecting package grub2 for versions less than 2.06-14. A patched version of the package is available...

8.1CVSS8.3AI score0.01284EPSS
Exploits0
CBLMariner
CBLMariner
added 2023/11/08 2:7 a.m.11 views

CVE-2022-28733 affecting package grub2 for versions less than 2.06-12

CVE-2022-28733 affecting package grub2 for versions less than 2.06-12. A patched version of the package is available...

8.1CVSS8.4AI score0.01284EPSS
Exploits0
OSV
OSV
added 2023/08/31 12:14 p.m.2 views

BELL-CVE-2022-28733 CVE-2022-28733 does not affect BellSoft software

Bulletin has no description...

8.1CVSS5.8AI score0.01284EPSS
Exploits0References1
OSV
OSV
added 2023/07/20 1:15 a.m.15 views

AZL-34788 CVE-2022-28733 affecting package grub2 for versions less than 2.06-14

Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...

8.1CVSS7.1AI score0.01284EPSS
Exploits0References1
NVD
NVD
added 2023/07/20 1:15 a.m.25 views

CVE-2022-28733

Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...

8.1CVSS7.9AI score0.01284EPSS
Exploits0References3
OSV
OSV
added 2023/07/20 1:15 a.m.8 views

AZL-27553 CVE-2022-28733 affecting package grub2 for versions less than 2.06-12

Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...

8.1CVSS7.1AI score0.01284EPSS
Exploits0References1
CVE
CVE
added 2023/07/20 12:20 a.m.1503 views

CVE-2022-28733

CVE-2022-28733 is a real grub2 vulnerability: an integer underflow in grub_net_recv_ip4_packets when processing IPv4 packets can cause a small rsm->total_len to wrap, potentially triggering a write past the end of a memory buffer. Public advisories (Debian DSA, Red Hat/NVD references) and vend...

8.1CVSS7.5AI score0.01284EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2023/07/20 12:20 a.m.48 views

CVE-2022-28733

Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...

8.1CVSS7.9AI score0.01284EPSS
Exploits0
Cvelist
Cvelist
added 2023/07/20 12:20 a.m.24 views

CVE-2022-28733 Integer underflow in grub_net_recv_ip4_packets

Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in grubnetrecvip4packets function on rsm-totallen value. Under certain circumstances the totallen value may end up wrapping around to a small integer number which will be used in memory...

8.1CVSS7.6AI score0.01284EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/06/23 12:0 a.m.24 views

F5 Networks BIG-IP : GRUB2 vulnerability (K000132893)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000132893 advisory. - Integer underflow in grubnetrecvip4packets; A malicious crafted IP packet can lead to an integer underflow in...

8.9AI score0.01284EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/25 12:0 a.m.23 views

Oracle Linux 8 : grub2 (ELSA-2022-9471)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9471 advisory. - Add CVE-2022-28736 to the list JIRA: OLDIS-16371 - Fix: CVE-2021-3695, CVE-2021-3696, CVE-2021-3697, CVE-2022-28733, CVE-2022-28734, CVE-2022-28735...

8.1CVSS6.6AI score0.01284EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/03/21 12:0 a.m.78 views

Amazon Linux 2023 : grub2-common, grub2-efi-aa64, grub2-efi-aa64-cdboot (ALAS2023-2023-020)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-020 advisory. A flaw was found in grub 2, where a crafted 16-bit grayscale PNG image may lead to an out-of-bounds write. This flaw allows an attacker to corrupt the data on the heap portion of the grub2's...

8.6CVSS7.4AI score0.01284EPSS
Exploits0References22
Rosalinux
Rosalinux
added 2023/02/14 11:48 a.m.35 views

Advisory ROSA-SA-2023-2112

Software: grub2 2.02 OS: rosa-server79 packageevrstring: grub2-2.02-0.87 CVE-ID: CVE-2022-28733 BDU-ID: 2022-03372 CVE-Crit: HIGH CVE-DESC: A vulnerability in the grubnetrecvip4packets function of the Grub operating systems bootloader program is related to integer overflow. Exploitation of the...

8.1CVSS9.1AI score0.01284EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2023/01/12 11:10 p.m.30 views

Security Bulletin: IBM Security Verify Access Appliance includes components with known vulnerabilities

Summary Multiple Security Vulnerabilities were found in the IBM Security Verify Access ISVA Appliance Operating System layer. These vulnerabilities have been addressed in ISVA 10.0.5.0, which is linked below. Vulnerability Details CVEID:CVE-2022-2526 DESCRIPTION: systemd could allow a remote...

9.8CVSS9.8AI score0.96275EPSS
Exploits13Affected Software1
Rows per page
Query Builder