CVE-2019-14865
MEDIUM
5,9
Source: [email protected]
Attack Vector: local
Attack Complexity: low
Privileges Required: low
User Interaction: required
Scope: changed
Confidentiality: none
Integrity: none
Availability: high
MEDIUM
4,9
Source: [email protected]
Access Vector: local
Access Complexity: low
Authentication: none
Confidentiality: none
Integrity: none
Availability: complete
Description
AI Translation Available
A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.
EPSS (Exploit Prediction Scoring System)
Trend Analysis
EPSS (Exploit Prediction Scoring System)
Prevede la probabilità di sfruttamento basata su intelligence sulle minacce e sulle caratteristiche della vulnerabilità.
EPSS Score
0,0006
Percentile
0,2th
Updated
EPSS Score Trend (Last 90 Days)
267
Privilege Defined With Unsafe Actions
IncompleteCommon Consequences
Security Scopes Affected:
Access Control
Potential Impacts:
Gain Privileges Or Assume Identity
Applicable Platforms
All platforms may be affected
Application
Grub2 by Gnu
CPE Identifier
View Detailed Analysis
cpe:2.3:a:gnu:grub2:-:*:*:*:*:*:*:*
Common Platform Enumeration - Standardized vulnerability identification
https://access.redhat.com/errata/RHSA-2020:0335
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14865
https://seclists.org/oss-sec/2019/q4/101
http://www.openwall.com/lists/oss-security/2024/02/06/3
https://access.redhat.com/errata/RHSA-2020:0335
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14865
https://seclists.org/oss-sec/2019/q4/101
http://www.openwall.com/lists/oss-security/2024/02/06/3