Vulnerability Details : CVE-2024-1048
A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-bootflag will create a temporary file with the new grubenv content and rename it to the original grubenv file. If the program is killed before the rename operation, the temporary file will not be removed and may fill the filesystem when invoked multiple times, resulting in a filesystem out of free inodes or blocks.
Products affected by CVE-2024-1048
- cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
- cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:grub2:-:*:*:*:*:*:*:*
- cpe:2.3:o:fedoraproject:fedora:40:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2024-1048
0.01%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 1 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2024-1048
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
3.3
|
LOW | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L |
1.8
|
1.4
|
NIST | 2024-02-13 |
|
3.3
|
LOW | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L |
1.8
|
1.4
|
Red Hat, Inc. | 2024-02-06 |
|
3.2
|
LOW | CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:N/I:N/A:L |
1.5
|
1.4
|
Red Hat, Inc. | 2024-02-06 |
|
3.3
|
LOW | CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L |
N/A
|
N/A
|
RedHat-CVE-2024-1048 | 2024-02-06 |
CWE ids for CVE-2024-1048
-
The product does not properly "clean up" and remove temporary or supporting resources after they have been used.Assigned by:
- nvd@nist.gov (Primary)
- secalert@redhat.com (Secondary)
References for CVE-2024-1048
-
https://www.openwall.com/lists/oss-security/2024/02/06/3
oss-security - CVE-2024-1048: grub2-set-bootflag may be abused to fill up /boot, bypass RLIMIT_NPROCMailing List;Third Party Advisory
-
https://access.redhat.com/errata/RHSA-2024:3184
RHSA-2024:3184 - Security Advisory - Red Hat Customer Portal
-
https://bugzilla.redhat.com/show_bug.cgi?id=2256827
2256827 – (CVE-2024-1048) CVE-2024-1048 grub2: grub2-set-bootflag can be abused by local (pseudo-)usersIssue Tracking;Vendor Advisory
-
http://www.openwall.com/lists/oss-security/2024/02/06/3
oss-security - CVE-2024-1048: grub2-set-bootflag may be abused to fill up /boot, bypass RLIMIT_NPROCMailing List;Third Party Advisory
-
https://security.netapp.com/advisory/ntap-20240223-0007/
CVE-2024-1048 Grub2 Vulnerability in NetApp Products | NetApp Product Security
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YSJAEGRR3XHMBBBKYOVMII4P34IXEYPE/
[SECURITY] Fedora 38 Update: grub2-2.06-116.fc38 - package-announce - Fedora Mailing-Lists
-
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XRZQCVZ3XOASVFT6XLO7F2ZXOLOHIJZQ/
[SECURITY] Fedora 39 Update: grub2-2.06-118.fc39 - package-announce - Fedora Mailing-Lists
-
https://access.redhat.com/errata/RHSA-2024:2456
RHSA-2024:2456 - Security Advisory - Red Hat Customer Portal
-
https://access.redhat.com/security/cve/CVE-2024-1048
CVE-2024-1048- Red Hat Customer PortalVendor Advisory
Jump to