CVE-2020-27779
HIGHGRUB2 < 2.06 - Authenticated Secure Boot Bypass via cutmem Command
Title source: llmDescription
A flaw was found in grub2 in versions prior to 2.06. The cutmem command does not honor secure boot locking allowing an privileged attacker to remove address ranges from memory creating an opportunity to circumvent SecureBoot protections after proper triage about grub's memory layout. The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability.
References (4)
Core 4
Core References
Issue Tracking, Third Party Advisory x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=1900698
Mailing List, Third Party Advisory vendor-advisory
x_refsource_fedora
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZWZ36QK4IKU6MWDWNOOWKPH3WXZBHT2R/
Third Party Advisory vendor-advisory
x_refsource_gentoo
https://security.gentoo.org/glsa/202104-05
Third Party Advisory x_refsource_confirm
https://security.netapp.com/advisory/ntap-20220325-0001/
Scores
CVSS v3
7.5
EPSS
0.0003
EPSS Percentile
7.3%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H
Details
CWE
CWE-285
Status
published
Products (20)
fedoraproject/fedora
33
fedoraproject/fedora
34
gnu/grub2
< 2.06
netapp/ontap_select_deploy_administration_utility
redhat/enterprise_linux
7.0
redhat/enterprise_linux
8.0
redhat/enterprise_linux_server_aus
7.2
redhat/enterprise_linux_server_aus
7.3
redhat/enterprise_linux_server_aus
7.4
redhat/enterprise_linux_server_aus
7.6
... and 10 more
Published
Mar 03, 2021
Tracked Since
Feb 18, 2026