Grub2: out-of-bounds write at fs/ntfs.c may lead to unsigned code execution
CVE-2023-4692

7.8HIGH

Key Information:

Vendor: Red Hat
Status: grub2; Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9
Vendor: CVE Published:; 25 October 2023

What is CVE-2023-4692?

An out-of-bounds write flaw was identified in the NTFS filesystem driver of GRUB2. This vulnerability could enable an attacker to present a specially crafted NTFS filesystem image, resulting in potential corruption of GRUB's heap metadata. In certain scenarios, this may also affect the UEFI firmware heap metadata, which could lead to arbitrary code execution and a bypass of secure boot protections.

References

https://access.redhat.com/security/cve/CVE-2023-4692

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2236613

issue-trackingx_refsource_REDHAT

https://dfir.ru/2023/10/03/cve-2023-4692-cve-2023-4693-vu...

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 25, 2023
Vulnerability Reserved
Aug 31, 2023

Red Hat

What is CVE-2023-4692?

References

CVSS V3.1

Timeline