CVE-2025-1118 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attack…
Medium CVSS: 4.4

CVE-2025-1118

A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read any memory information, and an attacker may leverage this in order to extract signatures, salts, and other sensitive information from the memory.
Vendor
-
Product
-
CWE
CWE-501
Yayın Tarihi
2025-02-19 18:15:24
Güncelleme
2026-03-24 23:17:10
Source Identifier
secalert@redhat.com
KEV Date Added
-

Kategoriler

CWE-501 MEDIUM 2025

Referanslar

https://access.redhat.com/errata/RHSA-2025:16154 https://access.redhat.com/security/cve/CVE-2025-1118 https://bugzilla.redhat.com/show_bug.cgi?id=2346137 https://git.savannah.gnu.org/cgit/grub.git/commit/?id=34824806ac6302f91e8cabaa41308eaced25725f https://lists.gnu.org/archive/html/grub-devel/2025-02/msg00024.html