What is GHSA-7w9h-j8xp-j97v?

GHSA-7w9h-j8xp-j97v is a security advisory published by GitHub Security Advisories with Medium severity. A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a...

Which CVE IDs does GHSA-7w9h-j8xp-j97v cover?

GHSA-7w9h-j8xp-j97v covers the following CVE IDs: CVE-2025-61664. Each CVE has its own detail page on EchelonGraph Pulse with the synthesized EG score.

What is the CVSS v3 score of GHSA-7w9h-j8xp-j97v?

GHSA-7w9h-j8xp-j97v has a CVSS v3 base score of 4.9, published by GitHub Security Advisories.

GHSA-7w9h-j8xp-j97vMediumCVSS 4.9

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a...

Vendor

GitHub Security Advisories

Published

November 18, 2025

Last Modified

May 19, 2026

🔗 CVE IDs covered (1)

CVE-2025-61664 →

📋 Description

A vulnerability in the GRUB2 bootloader has been identified in the normal module. This flaw, a memory Use After Free issue, occurs because the normal_exit command is not properly unregistered when its related module is unloaded. An attacker can exploit this condition by invoking the command after the module has been removed, causing the system to improperly access a previously freed memory location. This leads to a system crash or possible impacts in data confidentiality and integrity.

🔗 References (5)

https://nvd.nist.gov/vuln/detail/CVE-2025-61664
https://access.redhat.com/security/cve/CVE-2025-61664
https://bugzilla.redhat.com/show_bug.cgi?id=2414685
https://lists.gnu.org/archive/html/grub-devel/2025-11/msg00155.html
https://github.com/advisories/GHSA-7w9h-j8xp-j97v