Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-45777

A flaw was found in grub2. The calculation of the translation buffer when reading a language .mo file in grub_gettext_getstr_from_position() may overflow, leading to a Out-of-bound write. This issue can be leveraged by an attacker to overwrite grub2's sensitive heap data, eventually leading to the circumvention of secure boot protections.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 4.9%
CVSS Severity
CVSS v3 Score 6.7
Products affected by CVE-2024-45777
  • Gnu » Grub2 » Version: N/A
    cpe:2.3:a:gnu:grub2:-
  • Gnu » Grub2 » Version: 1.98
    cpe:2.3:a:gnu:grub2:1.98
  • Gnu » Grub2 » Version: 1.99
    cpe:2.3:a:gnu:grub2:1.99
  • Gnu » Grub2 » Version: 2.00
    cpe:2.3:a:gnu:grub2:2.00
  • Gnu » Grub2 » Version: 2.01
    cpe:2.3:a:gnu:grub2:2.01
  • Gnu » Grub2 » Version: 2.02
    cpe:2.3:a:gnu:grub2:2.02
  • Gnu » Grub2 » Version: 2.04
    cpe:2.3:a:gnu:grub2:2.04
  • Gnu » Grub2 » Version: 2.06
    cpe:2.3:a:gnu:grub2:2.06
  • Gnu » Grub2 » Version: 2.06-150400.7.1
    cpe:2.3:a:gnu:grub2:2.06-150400.7.1
  • Gnu » Grub2 » Version: 2.06-18.1
    cpe:2.3:a:gnu:grub2:2.06-18.1
  • Gnu » Grub2 » Version: 2.12
    cpe:2.3:a:gnu:grub2:2.12
  • Redhat » Openshift » Version: 4.0
    cpe:2.3:a:redhat:openshift:4.0
  • Redhat » Enterprise Linux » Version: 10.0
    cpe:2.3:o:redhat:enterprise_linux:10.0
  • Redhat » Enterprise Linux » Version: 7.0
    cpe:2.3:o:redhat:enterprise_linux:7.0
  • Redhat » Enterprise Linux » Version: 8.0
    cpe:2.3:o:redhat:enterprise_linux:8.0
  • Redhat » Enterprise Linux » Version: 9.0
    cpe:2.3:o:redhat:enterprise_linux:9.0


Products
Pricing
Contact Us

Shodan ® - All rights reserved