CVE-2020-25632 log

Severity Medium
Remote No
Type Arbitrary code execution
The rmmod implementation for grub2 is flawed, allowing an attacker to unload a module used as a dependency without checking if any other dependent module is still loaded. This leads to a use-after-free scenario possibly allowing an attacker to execute arbitrary code and by-pass Secure Boot protections.
Group Package Affected Fixed Severity Status Ticket
AVG-1629 grub 2:2.04-10 2:2.06-1 Medium Fixed
Date Advisory Group Package Severity Type
15 Jun 2021 ASA-202106-43 AVG-1629 grub Medium multiple issues