vulnerability
Huawei EulerOS: CVE-2025-61661: grub2 security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 5 | (AV:L/AC:M/Au:N/C:N/I:P/A:C) | Feb 2, 2026 | Feb 3, 2026 | Feb 3, 2026 |
Severity
5
CVSS
(AV:L/AC:M/Au:N/C:N/I:P/A:C)
Published
Feb 2, 2026
Added
Feb 3, 2026
Modified
Feb 3, 2026
Description
A vulnerability has been identified in the GRUB (Grand Unified Bootloader) component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a maliciously configured USB device during the boot sequence to trigger this issue. A successful exploitation may lead GRUB to crash, leading to a Denial of Service. Data corruption may be also possible, although given the complexity of the exploit the impact is most likely limited.
Solutions
huawei-euleros-2_0_sp13-upgrade-grub2-commonhuawei-euleros-2_0_sp13-upgrade-grub2-efi-aa64huawei-euleros-2_0_sp13-upgrade-grub2-efi-aa64-moduleshuawei-euleros-2_0_sp13-upgrade-grub2-toolshuawei-euleros-2_0_sp13-upgrade-grub2-tools-extrahuawei-euleros-2_0_sp13-upgrade-grub2-tools-minimal
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.