CVE-2025-4382

CVSS v2.0

6.2

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:C/A:N

Name of the Vulnerable Software and Affected Versions GRUB versions (affected versions not specified)

Description A flaw in systems using LUKS-encrypted disks with GRUB configured for TPM-based auto-decryption may allow an attacker with physical access to access unencrypted data without further authentication. This occurs when GRUB fails to locate a valid filesystem and enters rescue mode after the underlying filesystem superblock is corrupted, leaving the decryption key loaded in system memory. This scenario compromises data confidentiality and also presents a data integrity concern.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Missing Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-306

Related Identifiers

BDU:2025-10602

CVE-2025-4382

OPENSUSE-SU-2025:15085-1

OPENSUSE-SU-2025_01615-1

SUSE-SU-2025:01615-1

SUSE-SU-2025:01747-1

SUSE-SU-2025:20511-1

SUSE-SU-2025:20863-1

SUSE-SU-2025_01615-1

SUSE-SU-2025_01747-1

Affected Products

Debian

Grub

Suse

CVE-2025-4382

Weakness Enumeration

Related Identifiers

Affected Products

References · 98