Home > Vulnerability Database > CVE-2020-15707

Mend.io Vulnerability Database

CVE-2020-15707

Date: July 29, 2020

Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.

Language: C

Severity Score

6.4

Related Resources (23)

Url: http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html

Url: https://www.debian.org/security/2020-GRUB-UEFI-SecureBoot

Url: http://ubuntu.com/security/notices/USN-4432-1

Url: https://www.suse.com/c/suse-addresses-grub2-secure-boot-issue/

Url: https://security.gentoo.org/glsa/202104-05

Url: https://security-tracker.debian.org/tracker/CVE-2020-15707

Url: https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html

Url: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200011

Url: https://access.redhat.com/security/vulnerabilities/grub2bootloader

Url: https://security.netapp.com/advisory/ntap-20200731-0008/

Url: https://nvd.nist.gov/vuln/detail/CVE-2020-15707

Url: https://usn.ubuntu.com/4432-1/

Url: https://www.openwall.com/lists/oss-security/2020/07/29/3

Url: https://www.suse.com/support/kb/doc/?id=000019673

Url: http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html

Url: https://www.debian.org/security/2020/dsa-4735

Url: http://www.openwall.com/lists/oss-security/2020/07/29/3

Url: https://security.alpinelinux.org/vuln/CVE-2020-15707

Url: https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/

Url: https://people.canonical.com/~ubuntu-security/cve/CVE-2020-15707

Url: https://access.redhat.com/security/cve/CVE-2020-15707

Url: https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/GRUB2SecureBootBypass

Url: https://www.mend.io/vulnerability-database/CVE-2020-15707

Severity Score

6.4

Weakness Type (CWE)

Integer Overflow or Wraparound

CWE-190

Race Conditions

CWE-362

CVSS v3.1

Base Score:	6.4
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	HIGH
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

CVSS v2

Base Score:	4.4
Access Vector (AV):	LOCAL
Access Complexity (AC):	MEDIUM
Authentication (AU):	NONE
Confidentiality (C):	PARTIAL
Integrity (I):	PARTIAL
Availability (A):	PARTIAL
Additional information:

Mend.io Vulnerability Database

We found results for “”

CVE-2020-15707

Date: July 29, 2020

Language: C

Severity Score

Related Resources (23)

Severity Score

Weakness Type (CWE)

CVSS v3.1

CVSS v2

Do you need more information?