Known Vulnerabilities for Grub by Gnu
Listed below are 5 of the newest known vulnerabilities associated with "Grub" by "Gnu".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-61662 json | A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where t... | Not Provided | 2025-11-18 | 2026-04-16 |
| CVE-2023-4949 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.7 - MEDIUM | 2023-11-10 | 2023-11-20 |
| CVE-2021-3697 json | A crafted JPEG image may lead the JPEG reader to underflow its data pointer, allowing user-controlled data to be written in h... | 7 - HIGH | 2022-07-06 | 2023-09-13 |
| CVE-2021-3696 json | A heap out-of-bounds write may heppen during the handling of Huffman tables in the PNG reader. This may lead to data corrupti... | 4.5 - MEDIUM | 2022-07-06 | 2023-09-13 |
| CVE-2021-3695 json | A crafted 16-bit grayscale PNG image may lead to a out-of-bounds write in the heap area. An attacker may take advantage of th... | 4.5 - MEDIUM | 2022-07-06 | 2023-09-13 |
| CVE-2013-4577 json | A certain Debian patch for GNU GRUB uses world-readable permissions for grub.cfg, which allows local users to obtain password... | 2.1 - LOW | 2014-05-12 | 2024-01-16 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Gnu | Grub | - |