Out-of-Bounds Write Vulnerability in GRUB2 Network Boot Process
CVE-2025-0624

7.6HIGH

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9; Red Hat Openshift Container Platform 4
Vendor: CVE Published:; 19 February 2025

Summary

A vulnerability in the GRUB2 bootloader allows an attacker on the same network segment to execute arbitrary code by exploiting a flaw in the network boot process. When GRUB2 attempts to find a configuration file, it copies data from a user-controlled environment variable into an internal buffer without adequately checking the variable's length. This oversight can lead to an out-of-bounds write, potentially allowing for remote code execution that bypasses secure boot protections, posing serious security risks.

References

https://access.redhat.com/security/cve/CVE-2025-0624

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2346112

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

7.6

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Feb 19, 2025
Vulnerability Reserved
Jan 21, 2025