Overview A security vulnerability, identified as CVE-2025-61664, has been discovered in the GRUB2 bootloader. This flaw is categorized as a Use-After-Free (UAF) issue within the `normal` module. Specifically, the `normal_exit` command isn’t properly unregistered when its associated module is unloaded. This can be exploited by an attacker to trigger a system crash or potentially compromise data confidentiality and integrity. Technical Details The root cause of this vulnerability lies in the improper management of memory allocated for the `normal_exit` command within the GRUB2 `normal` module. When the module containing this command is unloaded, the command’s associated data structures are not correctly…

Overview CVE-2025-61663 is a vulnerability affecting the GRUB2 bootloader. This flaw is classified as a Use-after-Free vulnerability within the ‘normal’ command. If exploited, it allows an attacker with the ability to execute the ‘normal’ command to trigger a Denial of Service (DoS) condition, potentially leading to system instability and a complete crash. Technical Details The core of the vulnerability lies in the improper unregistration of the ‘normal’ command when the corresponding module is unloaded. This leads to a Use-after-Free scenario. When the system attempts to access the ‘normal’ command after the module is unloaded, it accesses memory that is no…

Overview CVE-2025-61662 is a medium-severity Use-After-Free vulnerability affecting the gettext module in GRUB (GRand Unified Bootloader). This flaw can be exploited to cause a denial-of-service (DoS) condition. The vulnerability was published on 2025-11-18T19:15:50.203. Technical Details The core of this vulnerability lies in a programming error within GRUB’s gettext module. Specifically, the gettext command remains registered in memory even after the module containing it is unloaded. If an attacker can subsequently invoke this orphaned command, the application attempts to access a memory location that is no longer valid, leading to a Use-After-Free condition. This memory corruption can cause GRUB to crash.…

Overview CVE-2025-61661 describes a medium severity vulnerability in the GRUB (Grand Unified Bootloader) component. This flaw allows a local attacker to potentially cause a denial-of-service (DoS) condition and possibly data corruption. The vulnerability stems from improper handling of string conversions when GRUB reads information from USB devices. Technical Details The vulnerability arises because GRUB mishandles string conversion operations during the boot sequence when interacting with USB devices. Specifically, the bootloader does not adequately validate the length of strings received from USB devices. A malicious USB device, crafted to provide inconsistent length values during string conversion, can exploit this weakness. When…

Overview CVE-2025-60455 describes an unsafe deserialization vulnerability found in Modular Max Serve versions prior to 25.6. This vulnerability is specifically triggered when the --experimental-enable-kvcache-agent feature is enabled. An attacker can exploit this flaw to execute arbitrary code on the affected system. Technical Details The vulnerability resides within the kvcache_agent component of Modular Max Serve. When the --experimental-enable-kvcache-agent flag is used, the application becomes susceptible to deserializing untrusted data. Specifically, the deserialization process, if not properly sanitized, can allow an attacker to inject malicious code that is then executed by the server. This can be achieved by crafting a specially crafted…

Overview CVE-2025-56499 describes an incorrect access control vulnerability present in mihomo version 1.19.11. This flaw allows authenticated attackers with low-level privileges to read arbitrary files with elevated privileges. The vulnerability is triggered by obtaining the external control key from the config file, which then allows for unauthorized file access. Technical Details The vulnerability stems from insufficient access control mechanisms within mihomo v1.19.11. Specifically, an authenticated user with limited permissions can access the configuration file and retrieve the external control key. This key, intended for administrative or system-level operations, can then be leveraged to bypass intended access restrictions and read sensitive…

Overview CVE-2025-54771 is a medium-severity use-after-free vulnerability identified in the GNU GRUB (Grand Unified Bootloader). This flaw can be exploited to cause a denial-of-service condition and potentially compromise data integrity or confidentiality. Technical Details The vulnerability stems from an incorrect memory management process within GNU GRUB’s file-closing routine. Specifically, the file-closing process fails to properly release a memory pointer, leaving an invalid reference to a file system structure. This dangling pointer can be accessed later, leading to unpredictable behavior when GRUB attempts to use the freed memory. The core issue resides in how GRUB handles file system objects during the…

Published: 2025-11-18T19:15:49.200 Overview A critical vulnerability, identified as CVE-2025-54770, has been discovered in the GRUB2 bootloader’s network module. This flaw presents a Denial of Service (DoS) risk, potentially leading to system instability and downtime. This article provides a comprehensive analysis of the vulnerability, its potential impact, and recommended mitigation strategies. Technical Details CVE-2025-54770 is a Use-after-Free vulnerability originating from the improper handling of the net_set_vlan command within GRUB2’s network module. Specifically, the net_set_vlan command is not correctly unregistered when the network module is unloaded. This oversight allows an attacker, with the ability to execute this command, to trigger a scenario…

Overview CVE-2025-54321 identifies a vulnerability in Ascertia SigningHub, specifically affecting versions up to 8.6.8. This vulnerability stems from a lack of proper rate limiting on the password reset function. As a result, an attacker with valid (or potentially even invalid) usernames can repeatedly trigger password reset requests, leading to an email bombing attack against targeted users. Technical Details The core issue lies in the absence of adequate rate limiting on the password reset endpoint. This allows an attacker to automate the process of requesting password reset emails for one or multiple users. By sending a high volume of these requests…

Overview CVE-2025-54320 describes a vulnerability in Ascertia SigningHub, specifically affecting versions up to 8.6.8. This vulnerability arises from the absence of proper rate limiting on the “invite user” function. An authenticated attacker can leverage this weakness to perform an email bombing attack by automating a large number of invite requests. This can overwhelm targeted users with unwanted emails and potentially disrupt normal operations. Technical Details The core issue lies in the lack of rate limiting for the invite user functionality within SigningHub. This allows an attacker, after successfully authenticating to the system (with appropriate privileges to invite users), to programmatically…