Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

msrc логотип

CVE-2025-1118

Опубликовано: 03 сент. 2025
Источник: msrc
CVSS3: 4.4
EPSS Низкий

Описание

Grub2: commands/dump: the dump command is not in lockdown when secure boot is enabled

EPSS

Процентиль: 9%
0.00034
Низкий

4.4 Medium

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2025-1118

CVSS3: 4.4
ubuntu
9 месяцев назад

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory.

redhat логотип

CVE-2025-1118

CVSS3: 4.4
redhat
9 месяцев назад

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory.

nvd логотип

CVE-2025-1118

CVSS3: 4.4
nvd
9 месяцев назад

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory.

debian логотип

CVE-2025-1118

CVSS3: 4.4
debian
9 месяцев назад

A flaw was found in grub2. Grub's dump command is not blocked when gru ...

github логотип

GHSA-5r25-p9f2-w2xv

CVSS3: 4.4
github
9 месяцев назад

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory.

EPSS

Процентиль: 9%
0.00034
Низкий

4.4 Medium

CVSS3