Search for packages
| purl | pkg:deb/debian/grub2@2.06-3~deb11u6 |
| Next non-vulnerable version | 2.12-1~bpo12+1 |
| Latest non-vulnerable version | 2.14-2 |
| Risk | 3.5 |
| Vulnerability | Summary | Fixed by |
|---|---|---|
|
VCID-1tdk-6d8a-m7h8
Aliases: CVE-2025-61662 |
grub2: Missing unregister call for gettext command may lead to use-after-free |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-1vtj-un1a-afax
Aliases: CVE-2025-0685 |
grub2: jfs: Integer overflow when handling symlinks may lead to heap based out-of-bounds write when reading data |
Affected by 0 other vulnerabilities. |
|
VCID-29d7-asmu-e7ev
Aliases: CVE-2021-3981 |
Multiple vulnerabilities have been discovered in GRUB, the worst of which may allow for secureboot bypass. |
Affected by 29 other vulnerabilities. |
|
VCID-3vhv-ya75-cuhc
Aliases: CVE-2025-0622 |
grub2: command/gpg: Use-after-free due to hooks not being removed on module unload |
Affected by 0 other vulnerabilities. |
|
VCID-53x3-83by-gueq
Aliases: CVE-2025-54771 |
grub2: Use-after-free in grub_file_close() |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-5a7e-ctj7-dqab
Aliases: CVE-2025-0677 |
grub2: UFS: Integer overflow may lead to heap based out-of-bounds write when handling symlinks |
Affected by 0 other vulnerabilities. |
|
VCID-5m3u-p8q4-kfhx
Aliases: CVE-2024-45775 |
grub2: commands/extcmd: Missing check for failed allocation |
Affected by 0 other vulnerabilities. |
|
VCID-5m6c-h4j2-mqcg
Aliases: CVE-2024-45777 |
grub2: grub-core/gettext: Integer overflow leads to Heap OOB Write. |
Affected by 0 other vulnerabilities. |
|
VCID-5vyx-ut4z-jucd
Aliases: CVE-2025-0689 |
grub2: udf: Heap based buffer overflow in grub_udf_read_block() may lead to arbitrary code execution |
Affected by 0 other vulnerabilities. |
|
VCID-6cpn-v8j3-7ub3
Aliases: CVE-2024-45776 |
grub2: grub-core/gettext: Integer overflow leads to Heap OOB Write and Read. |
Affected by 0 other vulnerabilities. |
|
VCID-6tg5-6gjc-nygy
Aliases: CVE-2025-0690 |
grub2: read: Integer overflow may lead to out-of-bounds write |
Affected by 0 other vulnerabilities. |
|
VCID-6vxc-35x2-3fek
Aliases: CVE-2024-45778 |
grub2: fs/bfs: Integer overflow in the BFS parser. |
Affected by 0 other vulnerabilities. |
|
VCID-c2vg-36gb-bqas
Aliases: CVE-2025-61664 |
grub2: Missing unregister call for normal_exit command may lead to use-after-free |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-dn64-5ysd-yfer
Aliases: CVE-2024-56737 |
grub2: heap-based buffer overflow |
Affected by 0 other vulnerabilities. |
|
VCID-gaet-924c-57dv
Aliases: CVE-2025-54770 |
grub2: Use-after-free in net_set_vlan |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-h2ca-d9yc-vbex
Aliases: CVE-2025-1125 |
grub2: fs/hfs: Integer overflow may lead to heap based out-of-bounds write |
Affected by 0 other vulnerabilities. |
|
VCID-hn4b-sdcq-j3bx
Aliases: CVE-2025-1118 |
grub2: commands/dump: The dump command is not in lockdown when secure boot is enabled |
Affected by 0 other vulnerabilities. |
|
VCID-nphq-62t2-b7bk
Aliases: CVE-2025-0684 |
grub2: reiserfs: Integer overflow when handling symlinks may lead to heap based out-of-bounds write when reading data |
Affected by 0 other vulnerabilities. |
|
VCID-pjq7-bxwk-uqec
Aliases: CVE-2024-45783 |
grub2: fs/hfs+: refcount can be decremented twice |
Affected by 0 other vulnerabilities. |
|
VCID-s86w-7czc-s3a9
Aliases: CVE-2024-45774 |
grub2: reader/jpeg: Heap OOB Write during JPEG parsing |
Affected by 0 other vulnerabilities. |
|
VCID-sub1-vd8w-dka7
Aliases: CVE-2025-0624 |
grub2: net: Out-of-bounds write in grub_net_search_config_file() |
Affected by 0 other vulnerabilities. |
|
VCID-swtj-9pmu-4ugn
Aliases: CVE-2025-4382 |
grub2: grub allow access to encrypted device through CLI once root device is unlocked via TPM |
Affected by 0 other vulnerabilities. Affected by 6 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-tkur-tbms-zkcz
Aliases: CVE-2025-0678 |
grub2: squash4: Integer overflow may lead to heap based out-of-bounds write when reading data |
Affected by 0 other vulnerabilities. |
|
VCID-ur99-cm1x-cfdm
Aliases: CVE-2025-61663 |
grub2: Missing unregister call for normal commands may lead to use-after-free |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-wy3p-p9zf-r7ef
Aliases: CVE-2025-61661 |
grub2: grub2: Out-of-bounds write via malicious USB device |
Affected by 0 other vulnerabilities. Affected by 0 other vulnerabilities. |
|
VCID-x57b-4ggt-5qdf
Aliases: CVE-2024-45780 |
grub2: fs/tar: Integer Overflow causes Heap OOB Write |
Affected by 0 other vulnerabilities. |
|
VCID-xamt-2k26-p3ev
Aliases: CVE-2024-45782 |
grub2: fs/hfs: strcpy() using the volume name (fs/hfs.c:382) |
Affected by 0 other vulnerabilities. |
|
VCID-xjtf-q3gz-7ug8
Aliases: CVE-2024-45779 |
grub2: fs/bfs: Integer overflow leads to Heap OOB Read in the BFS parser |
Affected by 0 other vulnerabilities. |
|
VCID-ymw1-gk3r-kfhz
Aliases: CVE-2025-0686 |
grub2: romfs: Integer overflow when handling symlinks may lead to heap based out-of-bounds write when reading dat |
Affected by 0 other vulnerabilities. |
|
VCID-yw2r-4rr8-pkfd
Aliases: CVE-2024-45781 |
grub2: fs/ufs: OOB write in the heap |
Affected by 0 other vulnerabilities. |
| Vulnerability | Summary | Aliases |
|---|---|---|
| VCID-33ec-pjax-nkak | Multiple vulnerabilities have been discoverd in GRUB, which may lead to secure boot circumvention or code execution. |
CVE-2022-3775
|
| VCID-8kh4-ym2x-k3he | grub2: out-of-bounds read at fs/ntfs.c |
CVE-2023-4693
|
| VCID-9mut-ye1e-pbdx | grub2: Out-of-bounds write at fs/ntfs.c may lead to unsigned code execution |
CVE-2023-4692
|
| VCID-gjbg-nve3-m3gy | Multiple vulnerabilities have been discoverd in GRUB, which may lead to secure boot circumvention or code execution. |
CVE-2022-2601
|