Vulnerability DatabaseCVE-2020-15707
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2020-15707
Published:July 29, 2020
Updated:May 17, 2026
Integer overflows were discovered in the functions grub_cmd_initrd and grub_initrd_init in the efilinux component of GRUB2, as shipped in Debian, Red Hat, and Ubuntu (the functionality is not included in GRUB2 upstream), leading to a heap-based buffer overflow. These could be triggered by an extremely large number of arguments to the initrd command on 32-bit architectures, or a crafted filesystem with very large files on any architecture. An attacker could use this to execute arbitrary code and bypass UEFI Secure Boot restrictions. This issue affects GRUB2 version 2.04 and prior versions.
Affected Packages
grub-efi (YOCTO):
Affected version(s) =2.04 <2.04+2.06~rc1
Fix Suggestion:
Update to version 2.04+2.06~rc1
grub (YOCTO):
Affected version(s) =2.04 <2.04+2.06~rc1
Fix Suggestion:
Update to version 2.04+2.06~rc1
Related Resources (18)
https://www.suse.com/support/kb/doc/?id=000019673
https://www.openwall.com/lists/oss-security/2020/07/29/3
https://lists.gnu.org/archive/html/grub-devel/2020-07/msg00034.html
https://access.redhat.com/security/vulnerabilities/grub2bootloader
https://security.gentoo.org/glsa/202104-05
http://www.openwall.com/lists/oss-security/2020/07/29/3
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV200011
https://access.redhat.com/security/cve/CVE-2020-15707
https://www.suse.com/c/suse-addresses-grub2-secure-boot-issue/
http://ubuntu.com/security/notices/USN-4432-1
https://www.debian.org/security/2020-GRUB-UEFI-SecureBoot
https://www.eclypsium.com/2020/07/29/theres-a-hole-in-the-boot/
https://wiki.ubuntu.com/SecurityTeam/KnowledgeBase/GRUB2SecureBootBypass
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00017.html
https://usn.ubuntu.com/4432-1/
https://security.netapp.com/advisory/ntap-20200731-0008/
http://lists.opensuse.org/opensuse-security-announce/2020-08/msg00016.html
https://www.debian.org/security/2020/dsa-4735
Do you need more information?
Contact Us
CVSS v4
Base Score:
5.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Attack Requirements
NONE
Privileges Required
HIGH
User Interaction
NONE
Vulnerable System Confidentiality
NONE
Vulnerable System Integrity
HIGH
Vulnerable System Availability
HIGH
Subsequent System Confidentiality
NONE
Subsequent System Integrity
NONE
Subsequent System Availability
NONE
CVSS v3
Base Score:
5.7
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
HIGH
Availability
HIGH
Weakness Type (CWE)
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-362
Integer Overflow or Wraparound
CWE-190
EPSS
Base Score:
0.03