Lucene search
+L

19 matches found

AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.4 views

Astra Linux – Vulnerability in grub2

A flaw was discovered in grub2. When performing a symlink lookup from a ReiserFS filesystem, grub’s ReiserFS module uses user-controlled parameters from the filesystem’s geometry to determine the internal buffer size. However, it improperly checks for integer overflows. A maliciously crafted...

6.4CVSS7.4AI score0.00253EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-4654

Malicious code in bioql PyPI...

6.4CVSS6.8AI score0.00328EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-5576

Malicious code in bioql PyPI...

6.4CVSS6.8AI score0.00253EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/06/12 12:0 a.m.7 views

EulerOS 2.0 SP11 : grub2 (EulerOS-SA-2025-1659)

According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A stack overflow flaw was found when reading a BFS file system. A crafted BFS filesystem may lead to an uncontrolled loop, causing grub2 to...

7.8CVSS7.8AI score0.01405EPSS
Exploits1References17
ATTACKERKB
ATTACKERKB
added 2025/03/03 6:15 p.m.9 views

CVE-2025-0684

A flaw was found in grub2. When performing a symlink lookup from a reiserfs filesystem, grub's reiserfs fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly crafted filesyste...

6.4CVSS7.2AI score0.00253EPSS
Exploits0References4
OSV
OSV
added 2025/03/03 6:15 p.m.13 views

CVE-2025-0684

A flaw was found in grub2. When performing a symlink lookup from a reiserfs filesystem, grub's reiserfs fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly crafted filesyste...

6.4CVSS6.7AI score0.00253EPSS
Exploits0References2
NVD
NVD
added 2025/03/03 6:15 p.m.17 views

CVE-2025-0686

A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciously crafted...

6.4CVSS0.00253EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2025/03/03 6:15 p.m.2 views

CVE-2025-0685

A flaw was found in grub2. When reading data from a jfs filesystem, grub's jfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly crafted filesystem may lead some o...

6.4CVSS7.1AI score0.00255EPSS
Exploits0References4
OSV
OSV
added 2025/03/03 6:15 p.m.1 views

DEBIAN-CVE-2025-0684

A flaw was found in grub2. When performing a symlink lookup from a reiserfs filesystem, grub's reiserfs fs module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciouly crafted filesyste...

6.4CVSS7.4AI score0.00253EPSS
Exploits0References1
CVE
CVE
added 2025/03/03 5:14 p.m.85 views

CVE-2025-0686

Affects grub2 ROMFS symlink handling (CVE-2025-0686). The romfs module uses user-controlled geometry parameters to size buffers in symlink lookups and fails to guard integer overflows, allowing buffer size miscalculation. This can cause grub_malloc to allocate too small a buffer, leading to out-o...

6.4CVSS6.9AI score0.00253EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2025/03/03 5:14 p.m.111 views

CVE-2025-0684

CVE-2025-0684 – grub2 (reiserfs) heap-based OOB write Affects grub2’s reiserfs filesystem driver. The vulnerability arises during symlink lookups where the driver uses user-controlled filesystem geometry to size internal buffers and fails to properly guard for integer overflow. This can cause buf...

6.4CVSS6.8AI score0.00253EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/02/19 7:15 p.m.10 views

CVE-2025-0677

A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grubmalloc may be called with a smaller...

6.4CVSS0.00328EPSS
Exploits0References5
OSV
OSV
added 2025/02/19 7:15 p.m.8 views

AZL-57007 CVE-2025-0677 affecting package grub2 for versions less than 2.06-25

A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grubmalloc may be called with a smaller...

6.4CVSS8AI score0.00328EPSS
Exploits0References1
OSV
OSV
added 2025/02/19 7:15 p.m.1 views

DEBIAN-CVE-2025-0677

A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grubmalloc may be called with a smaller...

6.4CVSS7.7AI score0.00328EPSS
Exploits0References1
OSV
OSV
added 2025/02/19 7:15 p.m.10 views

CVE-2025-0677

A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grubmalloc may be called with a smaller...

6.4CVSS6.9AI score0.00328EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/02/19 6:23 p.m.8 views

CVE-2025-0677 Grub2: ufs: integer overflow may lead to heap based out-of-bounds write when handling symlinks

A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grubmalloc may be called with a smaller...

6.4CVSS7.4AI score0.00328EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/02/18 7:27 p.m.6 views

CVE-2025-0686

A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciously crafted...

6.4CVSS7.6AI score0.00253EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/18 7:26 p.m.11 views

CVE-2025-0677

A flaw was found in grub2. When performing a symlink lookup, the grub's UFS module checks the inode's data size to allocate the internal buffer to read the file content, however, it fails to check if the symlink data size has overflown. When this occurs, grubmalloc may be called with a smaller...

6.4CVSS7.1AI score0.00328EPSS
Exploits0References3
OSV
OSV
added 2025/02/18 6:0 p.m.3 views

UBUNTU-CVE-2025-0686

A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size, however, it improperly checks for integer overflows. A maliciously crafted...

6.4CVSS7.8AI score0.00253EPSS
Exploits0References2
Rows per page
Query Builder