CVE-2020-15705
Published at:
-
29-07-2020 08:15
Last modified:
-
22-11-2022 05:52
Total changes:
-
9
Description
Common Vulnerability Scoring System (CVSS)
HighAttack complexity
LocalAttack vector
HighAvailability
HighConfidentiality
HighIntegrity
HighPrivileges required
Unchanged
Scope
NoneUser interaction
6.4
Base score
0.5
5.9
Exploitability score
Impact score
Verification logic
Reference
- https://www.suse.com/support/kb/doc/?id=000019673
- http://ubuntu.com/security/notices/USN-4432-1
- https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html
- https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/GRUB2SecureBootBypass
- https://www.debian.org/security/2020-GRUB-UEFI-SecureBoot
- https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200011
- https://access.redhat.com/security/vulnerabilities/grub2bootloader
- https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/
- https://www.suse.com/c/suse-addresses-grub2-secure-boot-issue/
- https://www.openwall.com/lists/oss-security/2020/07/29/3
- [oss-security] 20200729 multiple secure boot grub2 and linux kernel vulnerabilities-Mailing List, Third Party Advisory
- https://security.netapp.com/advisory/ntap-20200731-0008/
- USN-4432-1-Third Party Advisory
- openSUSE-SU-2020:1280-Mailing List, Third Party Advisory
- openSUSE-SU-2020:1282-Mailing List, Third Party Advisory
- [oss-security] 20210302 Multiple GRUB2 vulnerabilities-Mailing List, Third Party Advisory
- GLSA-202104-05-Third Party Advisory
- [oss-security] 20210916 Containers-optimized OS (COS) membership in the linux-distros list-Mailing List, Third Party Advisory
- [oss-security] 20210917 Re: Containers-optimized OS (COS) membership in the linux-distros list-Mailing List, Third Party Advisory
- [oss-security] 20210920 Re: Containers-optimized OS (COS) membership in the linux-distros list-Mailing List, Third Party Advisory
Keywords