Grub2-set-bootflag Utility Truncation Vulnerability

Grub2-set-bootflag Utility Truncation Vulnerability

CVE-2019-14865 · MEDIUM Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

A flaw was found in the grub2-set-bootflag utility of grub2. A local attacker could run this utility under resource pressure (for example by setting RLIMIT), causing grub2 configuration files to be truncated and leaving the system unbootable on subsequent reboots.

Learn more about our Web Application Penetration Testing UK.