Untriaged
Permalink
CVE-2023-4001
5.6 MEDIUM
- CVSS version: 3.1
- Attack vector (AV): PHYSICAL
- Attack complexity (AC): HIGH
- Privileges required (PR): LOW
- User interaction (UI): NONE
- Scope (S): UNCHANGED
- Confidentiality impact (C): HIGH
- Integrity impact (I): HIGH
- Availability impact (A): NONE
Grub2: bypass the grub password protection feature
An authentication bypass flaw was found in GRUB due to the way that GRUB uses the UUID of a device to search for the configuration file that contains the password hash for the GRUB password protection feature. An attacker capable of attaching an external drive such as a USB stick containing a file system with a duplicate UUID (the same as in the "/boot/" file system) can bypass the GRUB password protection feature on UEFI systems, which enumerate removable drives before non-removable ones. This issue was introduced in a downstream patch in Red Hat's version of grub2 and does not affect the upstream package.
References
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://security.netapp.com/advisory/ntap-20240216-0006/
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://security.netapp.com/advisory/ntap-20240216-0006/
- https://security.netapp.com/advisory/ntap-20240216-0006/
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://security.netapp.com/advisory/ntap-20240216-0006/
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2224951 issue-tracking x_refsource_REDHAT x_transferred
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://security.netapp.com/advisory/ntap-20240216-0006/ x_transferred
- http://www.openwall.com/lists/oss-security/2024/01/15/3 x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory x_transferred
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://security.netapp.com/advisory/ntap-20240216-0006/
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2224951 issue-tracking x_refsource_REDHAT x_transferred
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://security.netapp.com/advisory/ntap-20240216-0006/ x_transferred
- http://www.openwall.com/lists/oss-security/2024/01/15/3 x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj…
- https://security.netapp.com/advisory/ntap-20240216-0006/
- http://www.openwall.com/lists/oss-security/2024/01/15/3
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- http://www.openwall.com/lists/oss-security/2024/01/15/3 x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2224951 issue-tracking x_refsource_REDHAT x_transferred
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://security.netapp.com/advisory/ntap-20240216-0006/ x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2224951 issue-tracking x_refsource_REDHAT x_transferred
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://security.netapp.com/advisory/ntap-20240216-0006/ x_transferred
- http://www.openwall.com/lists/oss-security/2024/01/15/3 x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- http://www.openwall.com/lists/oss-security/2024/01/15/3 x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2224951 issue-tracking x_refsource_REDHAT x_transferred
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://security.netapp.com/advisory/ntap-20240216-0006/ x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- http://www.openwall.com/lists/oss-security/2024/01/15/3 x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2224951 issue-tracking x_refsource_REDHAT x_transferred
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://security.netapp.com/advisory/ntap-20240216-0006/ x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2224951 issue-tracking x_refsource_REDHAT x_transferred
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://security.netapp.com/advisory/ntap-20240216-0006/ x_transferred
- http://www.openwall.com/lists/oss-security/2024/01/15/3 x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry
- RHBZ#2224951 issue-tracking x_refsource_REDHAT
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub…
- http://www.openwall.com/lists/oss-security/2024/01/15/3 x_transferred
- RHSA-2024:0437 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0456 x_refsource_REDHAT vendor-advisory x_transferred
- RHSA-2024:0468 x_refsource_REDHAT vendor-advisory x_transferred
- https://access.redhat.com/security/cve/CVE-2023-4001 x_refsource_REDHAT vdb-entry x_transferred
- RHBZ#2224951 issue-tracking x_refsource_REDHAT x_transferred
- https://dfir.ru/2024/01/15/cve-2023-4001-a-vulnerability-in-the-downstream-grub… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproj… x_transferred
- https://security.netapp.com/advisory/ntap-20240216-0006/ x_transferred
Affected products
grub2
- *
Matching in nixpkgs
pkgs.grub2_pvgrub_image
PvGrub2 image for booting PV Xen guests
pkgs.grub2_pvhgrub_image
PvGrub2 image for booting PVH Xen guests
Package maintainers
-
@hehongbo Hongbo
-
@CertainLach Yaroslav Bolyukin <iam@lach.pw>
-
@SigmaSquadron Fernando Rodrigues <alpha@sigmasquadron.net>