← back
CVE-2025-0689

Grub2: udf: heap based buffer overflow in grub_udf_read_block() may lead to arbitrary code execution

CVSS 7.8 HIGHEPSS 0.4%CWE-120
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.8EPSS 0.4%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
03 Mar 2025Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadata to allocate its internal buffers. In certain scenarios, while iterating through disk sectors, it assumes the read size from the disk is always smaller than the allocated buffer size which is not guaranteed. A crafted filesystem image may lead to a heap-based buffer overflow resulting in critical data to be corrupted, resulting in the risk of arbitrary code execution by-passing secure boot protections.
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →