Gnu Vulnerabilities
Comprehensive security vulnerability database for Gnu products
3
1
3
0
Severity Distribution
| Description | Vendor / Product | Exploit Status | |||
|---|---|---|---|---|---|
| CVE-2025-61662 | 7.8 | An attacker can exploit a flaw in GRUB's gettext module to crash the system, leading to a Denial of Service. This happens because the system mistakenly keeps a command in memory after it should have been removed, allowing the attacker to trigger errors when that command is called. | gnugrub2 | Exploit Available | 5 months agoNov 18, 2025 |
| CVE-2024-36600 | 8.4 | This vulnerability allows an attacker to run malicious code on a victim's system by tricking them into opening a specially crafted ISO 9660 image file. It affects libcdio version 2.2.0 and can be exploited if the attacker can get the victim to use this outdated version of the software. | gnulibcdio | Exploit Available | almost 2 years agoJun 14, 2024 |
| CVE-2021-35942 | 9.1 | This vulnerability allows an attacker to crash applications or read sensitive information from memory by providing a specially crafted input to the wordexp function in the GNU C Library. It can be exploited when the function is used with untrusted data, potentially leading to service disruptions or data leaks. | gnuglibc | Exploit Available | over 4 years agoJul 22, 2021 |
About Gnu Security
This page tracks all publicly disclosed security vulnerabilities (CVEs) affecting Gnu products. Our database is updated in real-time from the National Vulnerability Database (NVD) and enriched with exploit information from GitHub and other security research sources.
Each CVE listing includes CVSS severity scores, exploit availability status, AI-powered vulnerability summaries, and links to official patches and security advisories.