Use-After-Free Vulnerability in GRUB2 Affecting Red Hat Products
CVE-2025-0622

6.4MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9; Red Hat Openshift Container Platform 4
Vendor: CVE Published:; 18 February 2025

Summary

A flaw has been identified in the GRUB2 bootloader's command/gpg functionality. When modules are unloaded, any hooks they created may not be removed properly. This can lead to a use-after-free condition, which, if successfully exploited, may allow an attacker to execute arbitrary code. This capability can potentially enable the attacker to bypass secure boot safeguards, thereby undermining system integrity.

References

https://access.redhat.com/security/cve/CVE-2025-0622

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2345865

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 18, 2025
Vulnerability Reserved
Jan 21, 2025