Lucene search
K

74 matches found

OSV
OSV
added 2025/02/19 7:15 p.m.6 views

AZL-56997 CVE-2025-0624 affecting package grub2 for versions less than 2.06-14

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...

7.6CVSS7.6AI score0.01373EPSS
Exploits0References1
NVD
NVD
added 2025/02/19 7:15 p.m.6 views

CVE-2025-0624

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...

7.6CVSS0.01373EPSS
Exploits0References20
OSV
OSV
added 2025/02/19 7:15 p.m.1 views

DEBIAN-CVE-2025-0624

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...

7.6CVSS7.3AI score0.01373EPSS
Exploits0References1
CVE
CVE
added 2025/02/19 6:23 p.m.241 views

CVE-2025-0624

CVE-2025-0624 affects grub2; a network-boot configuration search copies data from a user-controlled environment variable into an internal buffer using grub_strcpy without accounting for the environment variable length, causing an out-of-bounds write. This can enable remote code execution within t...

7.6CVSS8AI score0.01373EPSS
Exploits0References20
SUSE Linux
SUSE Linux
added 2025/02/19 7:29 a.m.6 views

Security update for grub2

This update for grub2 fixes the following issues: CVE-2024-45781: Fixed strcpy overflow in ufs. bsc1233617 CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. bsc1234958 CVE-2024-45782: Fixed strcpy overflow in hfs. bsc1233615 CVE-2024-45780: Fixed an overflow in tar/cpio. bsc1233614...

8.9CVSS7.3AI score0.01373EPSS
Exploits1References88
SUSE Linux
SUSE Linux
added 2025/02/19 7:29 a.m.6 views

Security update for grub2

This update for grub2 fixes the following issues: CVE-2024-45781: Fixed strcpy overflow in ufs. bsc1233617 CVE-2024-56737: Fixed a heap-based buffer overflow in hfs. bsc1234958 CVE-2024-45782: Fixed strcpy overflow in hfs. bsc1233615 CVE-2024-45780: Fixed an overflow in tar/cpio. bsc1233614...

8.9CVSS7.3AI score0.01373EPSS
Exploits1References94
RedhatCVE
RedhatCVE
added 2025/02/18 7:24 p.m.27 views

CVE-2025-0624

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...

7.6CVSS7.6AI score0.01373EPSS
Exploits0References3
OSV
OSV
added 2025/02/18 6:0 p.m.2 views

UBUNTU-CVE-2025-0624

A flaw was found in grub2. During the network boot process, when trying to search for the configuration file, grub copies data from a user controlled environment variable into an internal buffer using the grubstrcpy function. During this step, it fails to consider the environment variable length...

7.6CVSS7.5AI score0.01373EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/02/18 12:0 a.m.4 views

PT-2025-7459

Name of the Vulnerable Software and Affected Versions grub2 affected versions not specified Description A flaw was found in grub2 during the network boot process. When trying to search for the configuration file, grub copies data from a user-controlled environment variable into an internal buffer...

7.6CVSS7.5AI score0.01373EPSS
Exploits0References182
Tenable Nessus
Tenable Nessus
added 2024/11/11 12:0 a.m.15 views

openSUSE 15 Security Update : virtualbox (openSUSE-SU-2024:0364-1)

The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2024:0364-1 advisory. Update to release 7.1.4: NAT: Fixed DHCP problems with certain guests when domain is empty VMSVGA: Improved flickering, black screen and other...

7.5CVSS7.8AI score0.005EPSS
Exploits0References14
Citrix
Citrix
added 2024/07/13 12:0 a.m.8 views

Provisioned Target Devices are Acquiring Multiple IP Addresses During Boot Process

Provisioned Target Devices acquiring multiple IP addresses on a same NIC while booting up, thus leading to IP address exhaustion on a DHCP server. The following error message might appear: "A duplicate IP address was assigned to this machine while attempting to boot from the network. Stop code:...

7AI score
Exploits0
Redos
Redos
added 2024/06/13 12:0 a.m.15 views

ROS-20240613-01

A vulnerability in the tlsnewciphertext function of the iPXE network boot standard is related to manipulation of the padlen argument in the src/net/tls.c file of the TLS component. Exploitation of the vulnerability could allow an attacker acting remotely to disclose sensitive information...

4.3CVSS6.7AI score0.00481EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2024/06/13 12:0 a.m.6 views

The vulnerability of the tls_new_ciphertext() function in the src/net/tls.c file of the iPXE network loading standard’s Preboot Execution Environment implementation, which allows a hacker to disclose confidential information

The vulnerability of the tlsnewciphertext function in the src/net/tls.c file of the iPXE network loading standard implementation allows for unauthorized access. Exploiting this vulnerability could enable a malicious actor to disclose confidential information by manipulating the padlen argument...

4.3CVSS5.4AI score0.00481EPSS
Exploits0References4Affected Software2
RedHat Linux
RedHat Linux
added 2024/04/23 1:0 a.m.3 views

shim: RCE in http boot support may lead to Secure Boot bypass

A remote code execution vulnerability was found in Shim. The Shim boot support trusts attacker-controlled values when parsing an HTTP response. This flaw allows an attacker to craft a specific malicious HTTP request, leading to a completely controlled out-of-bounds write primitive and complete...

8.3CVSS7.1AI score0.04852EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/09/19 12:0 a.m.7 views

The vulnerability of the iPXE network loading standard implementation for the Cisco IOS XR operating system allows a hacker to load arbitrary files.

The vulnerability of the iPXE network loading standard implementation for the Cisco IOS XR operating system is related to insufficient verification of data authenticity during file loading. Exploiting this vulnerability could allow attackers to load arbitrary files...

6.8CVSS7.3AI score0.00095EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2021/11/29 12:0 a.m.4 views

Serva 安全漏洞

Vercot Serva is an automated Pxe server solution gas pedal based on an all-in-one portable multi-server engine from Vercot U.S. Serva is vulnerable to a server remote buffer overflow vulnerability that could be exploited by an attacker to cause a denial of service...

7.5CVSS6.1AI score0.01861EPSS
Exploits1References2
OSV
OSV
added 2020/11/11 8:59 a.m.11 views

SUSE-SU-2020:3283-1 Security update for u-boot

This update for u-boot fixes the following issues: - Fix network boot on Raspberry Pi 3 B+ bsc1098649 - Fix GOP pixel format bsc1098447 - Fix SD writes on Raspberry Pi - Enable a few more armv7 boards to boot with EFI - Fix potentially miscompiled runtime service calls Fix CVE-2019-14192...

10CVSS7.6AI score0.03701EPSS
Exploits1References39
OSV
OSV
added 2020/11/06 7:15 p.m.3 views

CVE-2020-3284

A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...

9.8CVSS6AI score0.02767EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/11/06 12:0 a.m.33 views

Cisco IOS XR RCE (cisco-sa-iosxr-pxe-unsign-code-exec-qAa78fD2)

According to its self-reported version, IOS-XR is affected by a remote code execution vulnerability in the enhanced Preboot eXecution Environment PXE boot loader due to a failure to verify commands issued during a network boot. An unauthenticated, remote attacker can exploit this to execute...

9.8CVSS8.8AI score0.02767EPSS
Exploits0References6
Cisco
Cisco
added 2020/11/04 4:0 p.m.30 views

Cisco IOS XR Software Enhanced Preboot eXecution Environment Unsigned Code Execution Vulnerability

A vulnerability in the enhanced Preboot eXecution Environment PXE boot loader for Cisco IOS XR 64-bit Software could allow an unauthenticated, remote attacker to execute unsigned code during the PXE boot process on an affected device. The PXE boot loader is part of the BIOS and runs over the...

8.1CVSS1.2AI score0.02767EPSS
Exploits0References1
Rows per page
Query Builder