Home > Vulnerability Database > CVE-2024-45777

Mend.io Vulnerability Database

CVE-2024-45777

Date: February 19, 2025

A flaw was found in grub2. The calculation of the translation buffer when reading a language .mo file in grub_gettext_getstr_from_position() may overflow leading to a Out-of-bound write. This may be leveraged by an attacker to overwrite senstive grub2's heap data, eventually leading to the circumvention of secure boot protections

Severity Score

6.7

Related Resources (5)

Url: https://seclists.org/oss-sec/2025/q1/146

Url: https://access.redhat.com/security/cve/CVE-2024-45777

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2346343

Url: https://nvd.nist.gov/vuln/detail/CVE-2024-45777

Url: https://www.mend.io/vulnerability-database/CVE-2024-45777

Severity Score

6.7

Weakness Type (CWE)

Out-of-bounds Write

CWE-787

CVSS v3.1

Base Score:	6.7
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	LOW
Privileges Required (PR):	HIGH
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2024-45777

Date: February 19, 2025

Severity Score

Related Resources (5)

Severity Score

Weakness Type (CWE)

CVSS v3.1

Do you need more information?