CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2021/03/03 4:44 p.m.•21 views

CVE-2021-20225

A flaw was found in grub2 in versions prior to 2.06. The option parser allows an attacker to write past the end of a heap-allocated buffer by calling certain commands with a large number of specific short forms of options. The highest threat from this vulnerability is to data confidentiality and...

7.5AI score0.01017EPSS

CVE•added 2021/03/03 4:44 p.m.•309 views

CVE-2021-20225

CVE-2021-20225 affects grub2 up to version 2.06, with a heap out-of-bounds write in the short-form option parser. A local attacker could exploit this by supplying a large number of short option forms, potentially impacting data confidentiality, integrity, and availability. Public advisories and v...

7.2CVSS7.3AI score0.01017EPSS

AlpineLinux•added 2021/03/03 4:44 p.m.•33 views

CVE-2021-20225

7.2CVSS7.7AI score0.01017EPSS

Debian CVE•added 2021/03/03 4:40 p.m.•37 views

CVE-2020-25632

A flaw was found in grub2 in versions prior to 2.06. The rmmod implementation allows the unloading of a module used as a dependency without checking if any other dependent module is still loaded leading to a use-after-free scenario. This could allow arbitrary code to be executed or a bypass of...

8.2CVSS7.5AI score0.01152EPSS

AlpineLinux•added 2021/03/03 4:40 p.m.•38 views

CVE-2020-25647

A flaw was found in grub2 in versions prior to 2.06. During USB device initialization, descriptors are read with very little bounds checking and assumes the USB device is providing sane values. If properly exploited, an attacker could trigger memory corruption leading to arbitrary code execution...

7.6CVSS8.4AI score0.00794EPSS

Cvelist•added 2021/03/03 4:40 p.m.•22 views

CVE-2020-25647

8.3AI score0.00794EPSS

CVE•added 2021/03/03 4:40 p.m.•393 views

CVE-2020-25647

CVE-2020-25647 affects grub2 prior to 2.06. During USB device initialization, grub_usb_device_initialize() reads USB descriptors with very limited bounds checking, assuming sane device values. This can trigger memory corruption and lead to arbitrary code execution, bypassing Secure Boot. Reported...

7.6CVSS8.2AI score0.00794EPSS

Debian CVE•added 2021/03/03 4:40 p.m.•24 views

CVE-2020-25647

7.6CVSS7.8AI score0.00794EPSS

AlpineLinux•added 2021/03/03 4:40 p.m.•44 views

CVE-2020-14372

A flaw was found in grub2 in versions prior to 2.06, where it incorrectly enables the usage of the ACPI command when Secure Boot is enabled. This flaw allows an attacker with privileged access to craft a Secondary System Description Table SSDT containing code to overwrite the Linux kernel lockdow...

7.5CVSS7.6AI score0.01738EPSS

Cvelist•added 2021/03/03 4:40 p.m.•27 views

CVE-2020-14372

7.5AI score0.01738EPSS

Exploits0References5

CVE•added 2021/03/03 4:40 p.m.•321 views

CVE-2020-14372

Summary: CVE-2020-14372 affects grub2 prior to version 2.06. The flaw enables the use of the ACPI command when Secure Boot is enabled, allowing a privileged attacker to craft an SSDT that overwrites the Linux kernel lockdown state in memory. The loaded SSDT is executed by the kernel, defeating Se...

7.5CVSS7.3AI score0.01738EPSS

Exploits0References5Affected Software1

Debian CVE•added 2021/03/03 4:40 p.m.•22 views

CVE-2020-14372

7.5CVSS6.8AI score0.01738EPSS

CVE•added 2021/03/03 4:40 p.m.•328 views

CVE-2020-27749

CVE-2020-27749 affects grub2, with the vulnerability in grub_parser_split_cmdline() where variable names in the command line are expanded into contents using a 1 KB stack buffer without sufficient bounds checking. This can overflow the stack and corrupt the stack frame, potentially allowing code ...

7.2CVSS7.4AI score0.00573EPSS

Debian CVE•added 2021/03/03 4:40 p.m.•33 views

CVE-2020-27749

A flaw was found in grub2 in versions prior to 2.06. Variable names present are expanded in the supplied command line into their corresponding variable contents, using a 1kB stack buffer for temporary storage, without sufficient bounds checking. If the function is called with a command line that...

7.2CVSS7.5AI score0.00573EPSS

AlpineLinux•added 2021/03/03 4:40 p.m.•32 views

CVE-2020-27779

A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub's memory layout. The highest...

7.5CVSS8AI score0.0039EPSS

CVE•added 2021/03/03 4:40 p.m.•348 views

CVE-2020-27779

The CVE-2020-27779 issue affects grub2 prior to 2.06. The cutmem command does not honor Secure Boot locking, enabling a local attacker with privilege to remove memory address ranges and potentially bypass Secure Boot protections. Impacted effect includes data confidentiality, integrity, and avail...

7.5CVSS7.7AI score0.0039EPSS

Debian CVE•added 2021/03/03 4:40 p.m.•25 views

CVE-2020-27779

7.5CVSS7.2AI score0.0039EPSS

Cvelist•added 2021/03/03 4:40 p.m.•28 views

CVE-2020-27779

7.8AI score0.0039EPSS

RedHat Linux•added 2021/03/03 10:35 a.m.•4 views

podman: container users permissions are not respected in privileged containers

A flaw was found in podman. File permissions for non-root users running in a privileged container are not correctly checked. This flaw can be abused by a low-privileged user inside the container to access any other file in the container, even if owned by the root user inside the container. It doe...

7CVSS7.2AI score0.00261EPSS