vulnerability
Huawei EulerOS: CVE-2025-61662: grub2 security update
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 7 | (AV:L/AC:L/Au:S/C:C/I:C/A:C) | Feb 2, 2026 | Feb 3, 2026 | Feb 4, 2026 |
Severity
7
CVSS
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
Published
Feb 2, 2026
Added
Feb 3, 2026
Modified
Feb 4, 2026
Description
A Use-After-Free vulnerability has been discovered in GRUB's gettext module. This flaw stems from a programming error where the gettext command remains registered in memory after its module is unloaded. An attacker can exploit this condition by invoking the orphaned command, causing the application to access a memory location that is no longer valid. An attacker could exploit this vulnerability to cause grub to crash, leading to a Denial of Service. Possible data integrity or confidentiality compromise is not discarded.
Solutions
huawei-euleros-2_0_sp13-upgrade-grub2-commonhuawei-euleros-2_0_sp13-upgrade-grub2-efi-aa64huawei-euleros-2_0_sp13-upgrade-grub2-efi-aa64-moduleshuawei-euleros-2_0_sp13-upgrade-grub2-toolshuawei-euleros-2_0_sp13-upgrade-grub2-tools-extrahuawei-euleros-2_0_sp13-upgrade-grub2-tools-minimal
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.