A newly disclosed vulnerability in the GRUB2 bootloader’s read command (CVE-2025-0690) has raised concerns about potential Secure Boot bypasses and heap memory corruption in Linux systems.
Red Hat Product Security rates this integer overflow flaw as moderately severe. It could enable attackers with physical access and elevated privileges to execute arbitrary code or undermine Secure Boot protections.
https://cybersecuritynews.com/linux-gru ... erability/