CVE-2021-3981

EUVD-2021-27182

10.03.2022, 17:43

A flaw in grub2 was found where its configuration file, known as grub.cfg, is being created with the wrong permission set allowing non privileged users to read its content. This represents a low severity confidentiality issue, as those users can eventually read any encrypted passwords present in grub.cfg. This flaw affects grub2 2.06 and previous versions. This issue has been fixed in grub upstream but no version with the fix is currently released.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	3.3 LOW	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 6%

Affected Products (NVD)

Vendor	Product	Version
gnu	grub2	𝑥 ≤ 2.06

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

grub2

bookworm	2.06-13+deb12u1 fixed
bookworm (security)	2.06-13+deb12u1 fixed
bullseye	no-dsa
bullseye (security)	vulnerable
buster	no-dsa
sid	2.12-5 fixed
stretch	not-affected
trixie	2.12-5 fixed

Ubuntu Releases

Ubuntu Product

Codename

grub2

bionic	not-affected
focal	not-affected
hirsute	ignored
impish	ignored
jammy	not-affected
kinetic	ignored
lunar	ignored
mantic	not-affected
noble	not-affected
trusty	not-affected
xenial	not-affected

grub2-signed

bionic	needs-triage
focal	Fixed 1.187.3~20.04.1 released
jammy	Fixed 1.187.3~22.04.1 released
kinetic	ignored
lunar	not-affected
mantic	not-affected
noble	not-affected
trusty	needs-triage
xenial	needs-triage

grub2-unsigned

bionic	needs-triage
focal	Fixed 2.06-2ubuntu14.1 released
jammy	Fixed 2.06-2ubuntu14.1 released
kinetic	ignored
lunar	not-affected
mantic	not-affected
noble	not-affected
trusty	dne
xenial	needs-triage

Common Weakness Enumeration

CWE-276 - Incorrect Default Permissions
During installation, installed file permissions are set to allow anyone to modify those files.

References

http://www.openwall.com/lists/oss-security/2024/01/15/3

https://bugzilla.redhat.com/show_bug.cgi?id=2024170

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AI776L35DDYPCSAAJPJM3ZEQYSFZHBJX/

https://security.gentoo.org/glsa/202209-12

http://www.openwall.com/lists/oss-security/2024/01/15/3

https://bugzilla.redhat.com/show_bug.cgi?id=2024170

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AI776L35DDYPCSAAJPJM3ZEQYSFZHBJX/

https://security.gentoo.org/glsa/202209-12