Lucene search

CanonicalCVE-2020-15707

HistoryJul 29, 2020 - 6:15 p.m.

CVE-2020-15707

2020-07-2918:15:14

CWE-190

CWE-362

canonical

web.nvd.nist.gov

288

cve-2020-15707

integer overflow

buffer overflow

arbitrary code execution

uefi secure boot

grub2

efilinux

debian

red hat

ubuntu

nvd

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

6.4

Attack Vector

LOCAL

Attack Complexity

HIGH

Privileges Required

HIGH

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

48.1%

JSON

Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.

Affected configurations

Nvd

Node

gnugrub2Range≤2.04

Node

redhatenterprise_linux_atomic_hostMatch-

redhatopenshift_container_platformMatch4.0

redhatenterprise_linuxMatch7.0

redhatenterprise_linuxMatch8.0

Node

microsoftwindows_10Match-

microsoftwindows_10Match1607

microsoftwindows_10Match1709

microsoftwindows_10Match1803

microsoftwindows_10Match1809

microsoftwindows_10Match1903

microsoftwindows_10Match1909

microsoftwindows_10Match2004

microsoftwindows_8.1Match-

microsoftwindows_rt_8.1Match-

microsoftwindows_server_2012Match-

microsoftwindows_server_2012Matchr2

microsoftwindows_server_2016Match-

microsoftwindows_server_2016Match1903

microsoftwindows_server_2016Match1909

microsoftwindows_server_2016Match2004

microsoftwindows_server_2019Match-

Node

canonicalubuntu_linuxMatch14.04esm

canonicalubuntu_linuxMatch16.04esm

canonicalubuntu_linuxMatch18.04lts

canonicalubuntu_linuxMatch20.04lts

Node

debiandebian_linuxMatch10.0

Node

opensuseleapMatch15.1

opensuseleapMatch15.2

susesuse_linux_enterprise_serverMatch11

susesuse_linux_enterprise_serverMatch12

susesuse_linux_enterprise_serverMatch15

Node

netappactive_iq_unified_managerRange9.5≥vmware_vsphere

VendorProductVersionCPE
gnugrub2*cpe:2.3:a:gnu:grub2:*:*:*:*:*:*:*:*
redhatenterprise_linux_atomic_host-cpe:2.3:a:redhat:enterprise_linux_atomic_host:-:*:*:*:*:*:*:*
redhatopenshift_container_platform4.0cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*
redhatenterprise_linux7.0cpe:2.3:o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*
redhatenterprise_linux8.0cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
microsoftwindows_10-cpe:2.3:o:microsoft:windows_10:-:*:*:*:*:*:*:*
microsoftwindows_101607cpe:2.3:o:microsoft:windows_10:1607:*:*:*:*:*:*:*
microsoftwindows_101709cpe:2.3:o:microsoft:windows_10:1709:*:*:*:*:*:*:*
microsoftwindows_101803cpe:2.3:o:microsoft:windows_10:1803:*:*:*:*:*:*:*
microsoftwindows_101809cpe:2.3:o:microsoft:windows_10:1809:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
gnu	grub2	*	cpe:2.3:a:gnu:grub2::::::::
redhat	enterprise_linux_atomic_host	-	cpe:2.3:a:redhat:enterprise_linux_atomic_host:-:::::::*
redhat	openshift_container_platform	4.0	cpe:2.3:a:redhat:openshift_container_platform:4.0:::::::*
redhat	enterprise_linux	7.0	cpe:2.3:o:redhat:enterprise_linux:7.0:::::::*
redhat	enterprise_linux	8.0	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
microsoft	windows_10	-	cpe:2.3:o:microsoft:windows_10:-:::::::*
microsoft	windows_10	1607	cpe:2.3:o:microsoft:windows_10:1607:::::::*
microsoft	windows_10	1709	cpe:2.3:o:microsoft:windows_10:1709:::::::*
microsoft	windows_10	1803	cpe:2.3:o:microsoft:windows_10:1803:::::::*
microsoft	windows_10	1809	cpe:2.3:o:microsoft:windows_10:1809:::::::*

Rows per page:

1-10 of 331

CNA Affected

[
  {
    "product": "grub2 in Ubuntu",
    "vendor": "Ubuntu",
    "versions": [
      {
        "lessThan": "2.04-1ubuntu26.1",
        "status": "affected",
        "version": "20.04 LTS",
        "versionType": "custom"
      },
      {
        "lessThan": "2.02-2ubuntu8.16",
        "status": "affected",
        "version": "18.04 LTS",
        "versionType": "custom"
      },
      {
        "lessThan": "2.02~beta2-36ubuntu3.26",
        "status": "affected",
        "version": "16.04 LTS",
        "versionType": "custom"
      },
      {
        "lessThan": "2.02~beta2-9ubuntu1.20",
        "status": "affected",
        "version": "14.04 ESM",
        "versionType": "custom"
      }
    ]
  }
]