CVE-2024-45783

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Published Feb 18, 2025

CWE ID 911

Summary

CVE-2024-45783 is a newly discovered vulnerability affecting grub2, the GNU GRUB bootloader. The issue arises when grub2 fails to mount an HFS+ file system, resulting in the hfsplus filesystem driver failing to set an appropriate ERRNO value. This shortcoming can lead to a NULL pointer access, potentially causing system instability or even allowing unauthorized access. It is crucial for users to update their grub2 installation as soon as a patch becomes available to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/yb7Hm7
https://www.cve.org/CVERecord?id=CVE-2024-45783
https://nvd.nist.gov/vuln/detail/CVE-2024-45783

Back to Vulnerability Database

CVE-2024-45783

CVSS 3.1 Score 4.4 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations