74 matches found
AZL-56997 CVE-2025-0624 affecting package grub2 for versions less than 2.06-14
A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...
CVE-2025-0624
A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...
DEBIAN-CVE-2025-0624
A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...
CVE-2025-0624
CVE-2025-0624 affects grub2; a network-boot configuration search copies data from a user-controlled environment variable into an internal buffer using grub_strcpy without accounting for the environment variable length, causing an out-of-bounds write. This can enable remote code execution within t...
Security update for grub2
This update for grub2 fixes the following issues: CVE-2024-45781: Fixed strcpy overflow in ufs. bsc1233617 CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. bsc1234958 CVE-2024-45782: Fixed strcpy overflow in hfs. bsc1233615 CVE-2024-45780: Fixed an overflow in tar/cpio. bsc1233614...
Security update for grub2
This update for grub2 fixes the following issues: CVE-2024-45781: Fixed strcpy overflow in ufs. bsc1233617 CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. bsc1234958 CVE-2024-45782: Fixed strcpy overflow in hfs. bsc1233615 CVE-2024-45780: Fixed an overflow in tar/cpio. bsc1233614...
CVE-2025-0624
A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...
UBUNTU-CVE-2025-0624
A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...
PT-2025-7459
Name of the Vulnerable Software and Affected Versions grub2 affected versions not specified Description A flaw was found in grub2 during the network boot process. When trying to search for the configuration file, grub copies data from a user-controlled environment variable into an internal buffer...
openSUSE 15 Security Update : virtualbox (openSUSE-SU-2024:0364-1)
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0364-1 advisory. Update to release 7.1.4: NAT: Fixed DHCP problems with certain guests when domain is empty VMSVGA: Improved flickering, black screen and other...
Provisioned Target Devices are Acquiring Multiple IP Addresses During Boot Process
Provisioned Target Devices acquiring multiple IP addresses on a same NIC while booting up, thus leading to IP address exhaustion on a DHCP server. The following error message might appear: "A duplicate IP address was assigned to this machine while attempting to boot from the network. Stop code:...
ROS-20240613-01
A vulnerability in the tlsnewciphertext function of the iPXE network boot standard is related to manipulation of the padlen argument in the src/net/tls.c file of the TLS component. Exploitation of the vulnerability could allow an attacker acting remotely to disclose sensitive information...
The vulnerability of the tls_new_ciphertext() function in the src/net/tls.c file of the iPXE network loading standard’s Preboot Execution Environment implementation, which allows a hacker to disclose confidential information
The vulnerability of the tlsnewciphertext function in the src/net/tls.c file of the iPXE network loading standard implementation allows for unauthorized access. Exploiting this vulnerability could enable a malicious actor to disclose confidential information by manipulating the padlen argument...
shim: RCE in http boot support may lead to Secure Boot bypass
A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete...
The vulnerability of the iPXE network loading standard implementation for the Cisco IOS XR operating system allows a hacker to load arbitrary files.
The vulnerability of the iPXE network loading standard implementation for the Cisco IOS XR operating system is related to insufficient verification of data authenticity during file loading. Exploiting this vulnerability could allow attackers to load arbitrary files...
Serva 安全漏洞
Vercot Serva is an automated Pxe server solution gas pedal based on an all-in-one portable multi-server engine from Vercot U.S. Serva is vulnerable to a server remote buffer overflow vulnerability that could be exploited by an attacker to cause a denial of service...
SUSE-SU-2020:3283-1 Security update for u-boot
This update for u-boot fixes the following issues: - Fix network boot on Raspberry Pi 3 B+ bsc1098649 - Fix GOP pixel format bsc1098447 - Fix SD writes on Raspberry Pi - Enable a few more armv7 boards to boot with EFI - Fix potentially miscompiled runtime service calls Fix CVE-2019-14192...
CVE-2020-3284
A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...
Cisco IOS XR RCE (cisco-sa-iosxr-pxe-unsign-code-exec-qAa78fD2)
According to its self-reported version, IOS-XR is affected by a remote code execution vulnerability in the enhanced Preboot eXecution Environment PXE boot loader due to a failure to verify commands issued during a network boot. An unauthenticated, remote attacker can exploit this to execute...
Cisco IOS XR Software Enhanced Preboot eXecution Environment Unsigned Code Execution Vulnerability
A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...