Lucene search
K

221 matches found

NVD
NVD
added 2025/11/18 7:15 p.m.6 views

CVE-2025-54770

A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the netsetvlan command is not properly unregistered when the network module is unloaded from memory. An attacker who...

4.9CVSS0.0013EPSS
Exploits0References4
OSV
OSV
added 2025/11/18 7:15 p.m.5 views

AZL-70526 CVE-2025-61661 affecting package grub2 for versions less than 2.06-16

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...

4.8CVSS5.5AI score0.00172EPSS
Exploits0References1
OSV
OSV
added 2025/11/18 7:15 p.m.7 views

AZL-70580 CVE-2025-61661 affecting package grub2 for versions less than 2.06-26

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...

4.8CVSS5.5AI score0.00172EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/11/18 7:15 p.m.4 views

CVE-2025-61664

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normalexit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after...

4.9CVSS5.7AI score0.00124EPSS
Exploits0References2
OSV
OSV
added 2025/11/18 7:15 p.m.10 views

UBUNTU-CVE-2025-54770

A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the netsetvlan command is not properly unregistered when the network module is unloaded from memory. An attacker who...

4.9CVSS5.8AI score0.0013EPSS
Exploits0References4
OSV
OSV
added 2025/11/18 7:15 p.m.3 views

UBUNTU-CVE-2025-61663

A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the normal command is not properly unregistered when the module is unloaded. An attacker who can execute this comman...

4.9CVSS5.8AI score0.00115EPSS
Exploits0References3
OSV
OSV
added 2025/11/18 7:15 p.m.5 views

UBUNTU-CVE-2025-61664

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normalexit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after...

4.9CVSS5.7AI score0.00124EPSS
Exploits0References3
CVE
CVE
added 2025/11/18 6:30 p.m.62 views

CVE-2025-54770

CVE-2025-54770 is a Use-After-Free in GRUB2’s network module (net_set_vlan) triggered when the network module is unloaded, allowing a local attacker to access freed memory and cause a DoS crash. Connected advisories (ALAS/OpenSUSE/SUSE) confirm this issue across grub2 packages and list affected r...

4.9CVSS6.7AI score0.0013EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/11/18 6:30 p.m.17 views

CVE-2025-54770 Grub2: use-after-free in net_set_vlan

A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the netsetvlan command is not properly unregistered when the network module is unloaded from memory. An attacker who...

4.9CVSS0.0013EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/11/18 6:30 p.m.3 views

CVE-2025-54770

A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the netsetvlan command is not properly unregistered when the network module is unloaded from memory. An attacker who...

4.9CVSS5.7AI score0.0013EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/11/18 6:30 p.m.5 views

CVE-2025-54770

A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the netsetvlan command is not properly unregistered when the network module is unloaded from memory. An attacker who...

4.9CVSS5.4AI score0.0013EPSS
Exploits0
OSV
OSV
added 2025/11/18 6:30 p.m.1 views

CVE-2025-54770 Grub2: use-after-free in net_set_vlan

A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the netsetvlan command is not properly unregistered when the network module is unloaded from memory. An attacker who...

4.9CVSS6AI score0.0013EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2025/11/18 6:20 p.m.2 views

CVE-2025-61664

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normalexit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after...

4.9CVSS5.7AI score0.00124EPSS
Exploits0References4
CVE
CVE
added 2025/11/18 6:20 p.m.21 views

CVE-2025-61664

CVE-2025-61664 (GRUB2) is a Use-After-Free in the normal module where the normal_exit command is not properly unregistered when a module is unloaded. An attacker could invoke the orphaned/normal_exit path after the module removal, causing the system to access a previously freed memory location an...

4.9CVSS6.6AI score0.00124EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/18 6:20 p.m.16 views

CVE-2025-61664 Grub2: missing unregister call for normal_exit command may lead to use-after-free

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normalexit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after...

4.9CVSS0.00124EPSS
Exploits0References3
OSV
OSV
added 2025/11/18 6:20 p.m.1 views

CVE-2025-61664 Grub2: missing unregister call for normal_exit command may lead to use-after-free

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normalexit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after...

4.9CVSS5.9AI score0.00124EPSS
Exploits0References7
Vulnrichment
Vulnrichment
added 2025/11/18 6:20 p.m.2 views

CVE-2025-61663 Grub2: missing unregister call for normal commands may lead to use-after-free

A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the normal command is not properly unregistered when the module is unloaded. An attacker who can execute this comman...

4.9CVSS6.6AI score0.00115EPSS
Exploits0References2
CVE
CVE
added 2025/11/18 6:20 p.m.44 views

CVE-2025-61663

CVE-2025-61663 describes a Use-After-Free in GRUB2's normal command: when the module is unloaded, the normal command is not properly unregistered, allowing a attacker to invoke the command and trigger access to freed memory, causing system crash and Denial of Service with potential impact on inte...

4.9CVSS6.7AI score0.00115EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/18 6:20 p.m.16 views

CVE-2025-61663 Grub2: missing unregister call for normal commands may lead to use-after-free

A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the normal command is not properly unregistered when the module is unloaded. An attacker who can execute this comman...

4.9CVSS0.00115EPSS
Exploits0References2
OSV
OSV
added 2025/11/18 6:20 p.m.1 views

CVE-2025-61663 Grub2: missing unregister call for normal commands may lead to use-after-free

A vulnerability has been identified in the GRUB2 bootloader's normal command that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the normal command is not properly unregistered when the module is unloaded. An attacker who can execute this comman...

4.9CVSS6AI score0.00115EPSS
Exploits0References6
Rows per page
Query Builder