| Max CVSS | 6.9 | Min CVSS | 2.6 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2015-8370 | 6.9 |
Multiple integer underflows in Grub2 1.98 through 2.02 allow physically proximate attackers to bypass authentication, obtain sensitive information, or cause a denial of service (disk corruption) via backspace characters in the (1) grub_username_get f
|
21-10-2024 - 17:35 | 16-12-2015 - 21:59 | |
| CVE-2019-14865 | 4.9 |
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subse
|
06-02-2024 - 18:15 | 29-11-2019 - 10:15 | |
| CVE-2020-15707 | 4.4 |
Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffe
|
13-09-2021 - 14:25 | 29-07-2020 - 18:15 | |
| CVE-2015-5281 | 2.6 |
The grub2 package before 2.02-0.29 in Red Hat Enterprise Linux (RHEL) 7, when used on UEFI systems, allows local users to bypass intended Secure Boot restrictions and execute non-verified code via a crafted (1) multiboot or (2) multiboot2 module in t
|
07-12-2016 - 18:16 | 24-11-2015 - 20:59 |