An out-of-bounds read flaw was found on grub2's NTFS filesystem driver. This issue may allow a physically present malicious user to present a specially crafted NTFS file system image to read arbitrary memory locations. A successful attack allows sensitive data cached in memory or EFI variable values to be leaked, presenting a high Confidentiality risk.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
gnu grub2 |
||
redhat enterprise linux 8.0 |
||
redhat enterprise linux 9.0 |