Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2024-45779

An integer overflow flaw was found in the BFS file system driver in grub2. When reading a file with an indirect extent map, grub2 fails to validate the number of extent entries to be read. A crafted or corrupted BFS filesystem may cause an integer overflow during the file reading, leading to a heap of bounds read. As a consequence, sensitive data may be leaked, or grub2 will crash.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 3.7%
CVSS Severity
CVSS v3 Score 6.0
Products affected by CVE-2024-45779
  • Gnu » Grub2 » Version: N/A
    cpe:2.3:a:gnu:grub2:-
  • Gnu » Grub2 » Version: 1.98
    cpe:2.3:a:gnu:grub2:1.98
  • Gnu » Grub2 » Version: 1.99
    cpe:2.3:a:gnu:grub2:1.99
  • Gnu » Grub2 » Version: 2.00
    cpe:2.3:a:gnu:grub2:2.00
  • Gnu » Grub2 » Version: 2.01
    cpe:2.3:a:gnu:grub2:2.01
  • Gnu » Grub2 » Version: 2.02
    cpe:2.3:a:gnu:grub2:2.02
  • Gnu » Grub2 » Version: 2.04
    cpe:2.3:a:gnu:grub2:2.04
  • Gnu » Grub2 » Version: 2.06
    cpe:2.3:a:gnu:grub2:2.06
  • Gnu » Grub2 » Version: 2.06-150400.7.1
    cpe:2.3:a:gnu:grub2:2.06-150400.7.1
  • Gnu » Grub2 » Version: 2.06-18.1
    cpe:2.3:a:gnu:grub2:2.06-18.1
  • Gnu » Grub2 » Version: 2.12
    cpe:2.3:a:gnu:grub2:2.12


Products
Pricing
Contact Us

Shodan ® - All rights reserved