Lucene search
+L

149 matches found

vulnrichment
vulnrichment
added 2025/07/29 11:28 p.m.1 views

CVE-2025-43192

A configuration issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. Account-driven User Enrollment may still be possible with Lockdown Mode turned on...

5.6AI score0.00639EPSS
Exploits0References2
cvelist
cvelist
added 2025/07/29 11:28 p.m.8 views

CVE-2025-43192

A configuration issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7. Account-driven User Enrollment may still be possible with Lockdown Mode turned on...

0.00639EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/07/29 12:0 a.m.5 views

PT-2025-31288 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 15.6 macOS versions prior to 14.7.7 Description: A configuration issue was addressed with additional restrictions. Account-driven User Enrollment may still be possible with Lockdown Mode turned on. Recommendations:...

9.8CVSS6.3AI score0.00639EPSS
Exploits0References10
redhatcve
redhatcve
added 2025/05/23 9:9 a.m.6 views

CVE-2024-27862

A logic issue was addressed with improved state management. This issue is fixed in macOS Sonoma 14.6. Enabling Lockdown Mode while setting up a Mac may cause FileVault to become unexpectedly disabled...

5.3CVSS6.3AI score0.00556EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 4:10 p.m.6 views

CVE-2020-11607

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Notification exposure occurs in Lockdown mode because of the Edge Lighting application. The Samsung ID is SVE-2020-16680 April 2020...

5.3CVSS7.1AI score0.00396EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 4:7 p.m.5 views

CVE-2020-10830

An issue was discovered on Samsung mobile devices with P9.0 and Q10.0 software. Attackers can view notifications by entering many PINs in Lockdown mode. The Samsung ID is SVE-2019-16590 March 2020...

2.4CVSS7AI score0.00139EPSS
Exploits0References1
osv
osv
added 2025/04/14 11:7 a.m.8 views

CLSA-2025-1744628858 grub2: Fix of 5 CVEs

CVE-2025-0624: net: Out-of-bounds write in grubnetsearchconfigfile - CVE-2025-0690: read: Integer overflow may lead to out-of-bounds write - CVE-2025-1118: commands/dump: The dump command is not in lockdown when secure boot is enabled - CVE-2025-0678: squash4: Integer overflow may lead to heap...

7.8CVSS7AI score0.01373EPSS
Exploits1References1
susecve
susecve
added 2025/02/20 2:31 p.m.2 views

SUSE CVE-2025-1118

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS6.3AI score0.00286EPSS
Exploits0References12
nessus
nessus
added 2025/02/20 12:0 a.m.12 views

SUSE SLES15 Security Update : grub2 (SUSE-SU-2025:0587-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0587-1 advisory. - CVE-2024-45781: Fixed strcpy overflow in ufs. bsc1233617 - CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. bsc1234958 ...

8.8CVSS7.5AI score0.01373EPSS
Exploits1References67
osv
osv
added 2025/02/19 6:15 p.m.9 views

AZL-56904 CVE-2025-1118 affecting package grub2 for versions less than 2.06-15

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS6AI score0.00286EPSS
Exploits0References1
osv
osv
added 2025/02/19 6:15 p.m.2 views

DEBIAN-CVE-2025-1118

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS5.5AI score0.00286EPSS
Exploits0References1
nvd
nvd
added 2025/02/19 6:15 p.m.7 views

CVE-2025-1118

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS0.00286EPSS
Exploits0References5
attackerkb
attackerkb
added 2025/02/19 6:15 p.m.4 views

CVE-2025-1118

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS6AI score0.00286EPSS
Exploits0References6
osv
osv
added 2025/02/19 5:54 p.m.8 views

CVE-2025-1118 Grub2: commands/dump: the dump command is not in lockdown when secure boot is enabled

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS6.2AI score0.00286EPSS
Exploits0References9
vulnrichment
vulnrichment
added 2025/02/19 5:54 p.m.6 views

CVE-2025-1118 Grub2: commands/dump: the dump command is not in lockdown when secure boot is enabled

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS4.4AI score0.00286EPSS
Exploits0References5
cve
cve
added 2025/02/19 5:54 p.m.96 views

CVE-2025-1118

CVE-2025-1118 affects grub2 where the dump command is not blocked in lockdown/Secure Boot mode, allowing a local attacker to read arbitrary memory (signatures, salts, and other sensitive data). The issue is tied to grub2 memory access during lockdown and memory leakage from the dump/read path. Pu...

4.4CVSS5.5AI score0.00286EPSS
Exploits0References5
suse
suse
added 2025/02/19 7:30 a.m.3 views

Security update for grub2

This update for grub2 fixes the following issues: CVE-2024-45781: Fixed strcpy overflow in ufs. bsc1233617 CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. bsc1234958 CVE-2024-45782: Fixed strcpy overflow in hfs. bsc1233615 CVE-2024-45780: Fixed an overflow in tar/cpio. bsc1233614...

8.9CVSS7.3AI score0.01373EPSS
Exploits1References88
redhatcve
redhatcve
added 2025/02/18 7:53 p.m.7 views

CVE-2025-1118

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS6.1AI score0.00286EPSS
Exploits0References3
osv
osv
added 2025/02/18 6:0 p.m.1 views

UBUNTU-CVE-2025-1118

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory...

4.4CVSS7.2AI score0.00286EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2025/02/18 12:0 a.m.5 views

PT-2025-7491

Name of the Vulnerable Software and Affected Versions Grub2 affected versions not specified Description A flaw was found in Grub2, where the dump command is not blocked when Grub is in lockdown mode. This allows a user to read any memory information, and an attacker may leverage this to extract...

4.6CVSS6AI score0.00286EPSS
Exploits0References152
Rows per page
Query Builder