0.0004 Low
EPSS
Percentile
15.7%
grub2 is vulnerable to remote code execution. The vulnerability exists due to a lack of sanitization of the data pointer of the JPEG reader allowing an attacker to inject maliciously crafted script into the system via a crafted JPEG image.
bugzilla.redhat.com/show_bug.cgi?id=1991687
security-tracker.debian.org/tracker/CVE-2021-3697
security.gentoo.org/glsa/202209-12
security.netapp.com/advisory/ntap-20220930-0001/