5.3 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.6%
An out-of-bounds read flaw was found on grub2’s NTFS filesystem driver.
This issue may allow a physically present attacker to present a specially
crafted NTFS file system image to read arbitrary memory locations. A
successful attack allows sensitive data cached in memory or EFI variable
values to be leaked, presenting a high Confidentiality risk.
Author | Note |
---|---|
eslerm | grub2-unsigned contains Secure Boot security fixes the grub2 package unlikely affects Ubuntu’s Secure Boot grub2 and grub2-unsigned should have same major version |
eslerm | Ubuntu Secure Boot and ESM do not cover i386 trusty’s GA kernel cannot handle new versions of grub Note that key revocation is required to protect against evil housekeeper attacks (such as BlackLotus) |
eslerm | CWE-125 |
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
ubuntu | 18.04 | noarch | grub2-signed | < any | UNKNOWN |
ubuntu | 20.04 | noarch | grub2-signed | < 1.187.6~20.04.1 | UNKNOWN |
ubuntu | 22.04 | noarch | grub2-signed | < 1.187.6 | UNKNOWN |
ubuntu | 23.04 | noarch | grub2-signed | < 1.193.2 | UNKNOWN |
ubuntu | 23.10 | noarch | grub2-signed | < 1.197 | UNKNOWN |
ubuntu | 24.04 | noarch | grub2-signed | < 1.199 | UNKNOWN |
ubuntu | 16.04 | noarch | grub2-signed | < any | UNKNOWN |
ubuntu | 18.04 | noarch | grub2-unsigned | < any | UNKNOWN |
ubuntu | 20.04 | noarch | grub2-unsigned | < 2.06-2ubuntu14.4 | UNKNOWN |
ubuntu | 22.04 | noarch | grub2-unsigned | < 2.06-2ubuntu14.4 | UNKNOWN |
dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vulnerabilities-in-the-grub-boot-manager/
launchpad.net/bugs/cve/CVE-2023-4693
lists.gnu.org/archive/html/grub-devel/2023-10/msg00028.html
nvd.nist.gov/vuln/detail/CVE-2023-4693
security-tracker.debian.org/tracker/CVE-2023-4693
ubuntu.com/security/notices/USN-6410-1
www.cve.org/CVERecord?id=CVE-2023-4693
5.3 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:N/A:N
5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
32.6%