Known Vulnerabilities for Grub by Gnu
Listed below are 5 of the newest known vulnerabilities associated with "Grub" by "Gnu".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-43003 json | An issue was discovered in OpenStack ironic-python-agent 1.0.0 through 11.5.0. Ironic Python Agent (IPA) sometimes executes g... | Not Provided | 2026-05-01 | 2026-06-30 |
| CVE-2025-61662 json | A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where t... | Not Provided | 2025-11-18 | 2026-06-30 |
| CVE-2025-61661 json | A vulnerability has been identified in the GRUB (Grand Unified Bootloader) component. This flaw occurs because the bootloader... | Not Provided | 2025-11-18 | 2026-06-30 |
| CVE-2025-54771 json | A use-after-free vulnerability has been identified in the GNU GRUB (Grand Unified Bootloader). The flaw occurs because the fi... | Not Provided | 2025-11-18 | 2026-06-30 |
| CVE-2025-4382 json | A flaw was found in systems utilizing LUKS-encrypted disks with GRUB configured for TPM-based auto-decryption. When GRUB is s... | Not Provided | 2025-05-09 | 2026-06-30 |
| CVE-2025-1125 json | When reading data from a hfs filesystem, grub's hfs filesystem module uses user-controlled parameters from the filesystem met... | Not Provided | 2025-03-03 | 2026-06-29 |
| CVE-2025-1118 json | A flaw was found in grub2. Grub's dump command is not blocked when grub is in lockdown mode, which allows the user to read an... | Not Provided | 2025-02-19 | 2026-06-29 |
| CVE-2025-0690 json | The read command is used to read the keyboard input from the user, while reads it keeps the input length in a 32-bit integer ... | Not Provided | 2025-02-24 | 2026-06-29 |
| CVE-2025-0689 json | When reading data from disk, the grub's UDF filesystem module utilizes the user controlled data length metadata to allocate i... | Not Provided | 2025-03-03 | 2026-06-29 |
| CVE-2025-0686 json | A flaw was found in grub2. When performing a symlink lookup from a romfs filesystem, grub's romfs filesystem module uses user... | Not Provided | 2025-03-03 | 2026-06-29 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Gnu | Grub | - |