Lucene search
+L

12 matches found

amazon
amazon
added 2026/01/07 12:0 a.m.7 views

Medium: grub2

Issue Overview: A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service DoS risk. This flaw is a Use-after-Free issue, caused because the netsetvlan command is not properly unregistered when the network module is unloaded from memory...

7.8CVSS6.7AI score0.00194EPSS
Exploits0
osv
osv
added 2025/11/28 12:51 p.m.6 views

OESA-2025-2738 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A use-after-free vulnerability has been identified in the GNU GRUB Grand Unified Bootloader. The flaw occurs because t...

7.8CVSS6.6AI score0.00194EPSS
Exploits0References6
osv
osv
added 2025/11/28 12:50 p.m.7 views

OESA-2025-2737 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service...

7.8CVSS6.6AI score0.00194EPSS
Exploits0References7
osv
osv
added 2025/11/28 12:50 p.m.5 views

OESA-2025-2736 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service...

7.8CVSS6.6AI score0.00194EPSS
Exploits0References7
osv
osv
added 2025/11/28 12:50 p.m.7 views

OESA-2025-2735 grub2 security update

GNU GRUB is a Multiboot boot loader. It was derived from GRUB, the GRand Unified Bootloader, which was originally designed and implemented by Erich Stefan Boleyn. Security Fixes: A vulnerability has been identified in the GRUB2 bootloader's network module that poses an immediate Denial of Service...

7.8CVSS6.6AI score0.00194EPSS
Exploits0References7
osv
osv
added 2025/11/18 7:15 p.m.7 views

AZL-70580 CVE-2025-61661 affecting package grub2 for versions less than 2.06-26

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...

4.8CVSS5.5AI score0.00172EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/11/18 6:20 p.m.6 views

CVE-2025-61661

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...

4.8CVSS6.2AI score0.00172EPSS
Exploits0References3
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-4447

Malware in sbrugna...

7.5CVSS6.4AI score0.01208EPSS
Exploits0References6
nessus
nessus
added 2025/10/07 12:0 a.m.9 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986531)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986531 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Prevent OOB read/write in usbstringcopy Userspace provided string 's' coul...

5.5CVSS6.3AI score0.00233EPSS
Exploits0References3
mscve
mscve
added 2024/08/16 7:0 a.m.5 views

usb: gadget: configfs: Prevent OOB read/write in usb_string_copy()

...

5.5CVSS7.3AI score0.00233EPSS
Exploits0
nvd
nvd
added 2006/09/06 12:4 a.m.12 views

CVE-2006-4459

Integer overflow in AnywhereUSB/5 1.80.00 allows local users to cause a denial of service crash via a 1 byte header size specified in the USB string descriptor...

7.5CVSS6.3AI score0.01208EPSS
Exploits0References5
cvelist
cvelist
added 2006/09/06 12:0 a.m.20 views

CVE-2006-4459

Integer overflow in AnywhereUSB/5 1.80.00 allows local users to cause a denial of service crash via a 1 byte header size specified in the USB string descriptor...

6.3AI score0.01208EPSS
Exploits0References5
Rows per page
Query Builder