CVE-2022-28733 HIGH

CVE-2022-28733: Integer underflow in grub_net_recv_ip4_packets

Vendor Gnu Project
Product GNU GRUB
Weakness CWE-191
Published July 20, 2023
Last update February 13, 2025

CVSS base score

8.1/10
Attack vector Network
Attack complexity High
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

Integer underflow in grub_net_recv_ip4_packets; A malicious crafted IP packet can lead to an integer underflow in grub_net_recv_ip4_packets() function on rsm->total_len value. Under certain circumstances the total_len value may end up wrapping around to a small integer number which will be used in memory allocation. If the attack succeeds in such way, subsequent operations can write past the end of the buffer.

Key dates

02Disclosure timeline

July 20, 2023 CVE published
February 13, 2025 Record updated