Astra Linux - уязвимость в grub2

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader improperly handles string conversions when reading information from a USB device, allowing an attacker to exploit inconsistencies in the length values. A local attacker can...

CVE-2020-36987

Program Access Controller 1.2.0.0 contains an unquoted service path vulnerability in PACService.exe that allows local attackers to execute code with elevated privileges. Attackers can exploit the unquoted path during system startup or reboot to inject and run malicious executables with LocalSyste...

Do Not Start the debug-shell Service

The debug-shell service is used to locate faults that occur during system boot. This service is installed with systemd. The debug-shell service requires no authentication, that is, attackers can access the root shell by simply pressing Ctrl+Alt+F9 during systemd startup when the OS is booting. Th...

PT-2025-37793

Name of the Vulnerable Software and Affected Versions: macOS versions prior to Tahoe 26 Description: A permissions issue existed due to insufficient restrictions. This allowed USB Restricted Mode to not be applied to accessories connected during boot. Recommendations: Update to macOS Tahoe 26...

CVE-2025-37929 arm64: errata: Add missing sentinels to Spectre-BHB MIDR arrays

In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Add missing sentinels to Spectre-BHB MIDR arrays Commit a5951389e58d "arm64: errata: Add newer ARM cores to the spectrebhbloopaffected lists" added some additional CPUs to the Spectre-BHB workaround, including some...

PT-2024-36981 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.12.0-rc6-00077-g2e1b3cc9d7f7 Description: A problem in the Linux kernel has been fixed, specifically with the vGPIO driver, which would crash during bootup. The crash was caused by an unauthorized modification...

shim: out of bounds read when parsing MZ binaries

A flaw was found in the MZ binary format in Shim. An out-of-bounds read may occur, leading to a crash or possible exposure of sensitive data during the system's boot phase...

DEBIAN-CVE-2023-40550

An out-of-bounds read flaw was found in Shim when it tried to validate the SBAT information. This issue may expose sensitive data during the system's boot phase...

PT-2023-24140 · Uefi · Uefi

Name of the Vulnerable Software and Affected Versions: UEFI affected versions not specified Description: The issue is related to memory corruption in Boot while running a ListVars test in the UEFI Menu during boot. Recommendations: At the moment, there is no information about a newer version that...

CVE-2022-36307

The AirVelocity 1500 prints SNMP credentials on its physically accessible serial port during boot. This was fixed in AirVelocity 1500 software version 15.18.00.2511 and may affect other AirVelocity and AirSpeed models...

CVE-2021-20600

Uncontrolled resource consumption in Mitsubishi Electric MELSEC iQ-R series C Controller Module R12CCPU-V Firmware Versions "16" and prior allows a remote unauthenticated attacker to cause a denial-of-service DoS condition by sending a large number of packets in a short time while the module...

Huawei Honor 5A Bootloader Buffer Overflow Vulnerability

The Huawei Honor 5A Smart Phone is a smartphone from the Chinese company Huawei Huawei. A buffer overflow vulnerability exists in the Huawei Honor 5A Bootloader, as the program fails to adequately detect the parameter, an attacker can trick the user into installing a malicious application to...