CVE-2024-56738 | GNU Grub2 up to 2.12 grub_crypto_memcmp timing discrepancy

Posted by Angelo Barbosa | Dec 29, 2024 | CVE

A vulnerability classified as problematic has been found in GNU Grub2 up to 2.12. This affects the function grub_crypto_memcmp. The manipulation leads to observable timing discrepancy.

This vulnerability is uniquely identified as CVE-2024-56738. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2024-56738 | GNU Grub2 up to 2.12 grub_crypto_memcmp timing discrepancy

Related Posts

CVE-2024-39811 | Intel Server M20NTP Family UEFI input validation (intel-sa-01175)

CVE-2024-33027 | Qualcomm Snapdragon Auto up to XR1 Platform GPU Page Table memory corruption

CVE-2024-1907 | Categorify Plugin up to 1.0.7.4 on WordPress categorifyAjaxDeleteCategory cross-site request forgery

CVE-2024-3668 | PowerPack Pro for Elementor Plugin up to 2.10.17 on WordPress improper authentication