Memory Information Exposure in Grub2 by Red Hat
CVE-2025-1118

4.4MEDIUM

Key Information:

Vendor: Red Hat
Status: Red Hat Enterprise Linux 7; Red Hat Enterprise Linux 8; Red Hat Enterprise Linux 9; Red Hat Openshift Container Platform 4
Vendor: CVE Published:; 19 February 2025

Summary

A flaw exists in Grub2's functionality where the dump command can be executed even in lockdown mode. This oversight allows attackers to access sensitive memory contents, such as cryptographic signatures and salts. By exploiting this vulnerability, users with the necessary privileges could extract confidential information, which poses a significant threat to the integrity and security of systems that rely on Grub2 for boot management.

References

https://access.redhat.com/security/cve/CVE-2025-1118

vdb-entryx_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=2346137

issue-trackingx_refsource_REDHAT

CVSS V3.1

Score:

4.4

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 19, 2025
Vulnerability Reserved
Feb 7, 2025