Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2024-23301

Disclosure Date: January 12, 2024 (last updated January 23, 2024)
Relax-and-Recover (aka ReaR) through 2.7 creates a world-readable initrd when using GRUB_RESCUE=y. This allows local attackers to gain access to system secrets otherwise only readable by root.
Attack Vector: LocalPrivileges: LowUser Interaction: None
0
0