Language:
Severity: High
ID: 139179
File Name: ubuntu_USN-4432-1.nasl
Version: 1.7
Type: local
Agent: unix
Family: Ubuntu Local Security Checks
Published: 7/30/2020
Updated: 5/13/2022
Supported Sensors: Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent
CVSS Score Source: CVE-2020-14309
Risk Factor: High
Score: 8.9
Risk Factor: Medium
Base Score: 4.6
Temporal Score: 3.4
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Temporal Vector: E:U/RL:OF/RC:C
Risk Factor: High
Base Score: 8.2
Temporal Score: 7.1
Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Temporal Vector: E:U/RL:O/RC:C
CPE: p-cpe:/a:canonical:ubuntu_linux:grub-efi-amd64-bin, p-cpe:/a:canonical:ubuntu_linux:grub-efi-amd64-signed, p-cpe:/a:canonical:ubuntu_linux:grub-efi-arm-bin, p-cpe:/a:canonical:ubuntu_linux:grub-efi-arm64-bin, p-cpe:/a:canonical:ubuntu_linux:grub-efi-arm64-signed, p-cpe:/a:canonical:ubuntu_linux:grub-efi-ia32-bin, cpe:/o:canonical:ubuntu_linux:14.04, cpe:/o:canonical:ubuntu_linux:16.04, cpe:/o:canonical:ubuntu_linux:18.04:-:lts, cpe:/o:canonical:ubuntu_linux:20.04
Required KB Items: Host/cpu, Host/Ubuntu, Host/Ubuntu/release, Host/Debian/dpkg-l
Exploit Ease: No known exploits are available
Patch Publication Date: 7/29/2020
Vulnerability Publication Date: 7/29/2020
CVE: CVE-2020-10713, CVE-2020-14308, CVE-2020-14309, CVE-2020-14310, CVE-2020-14311, CVE-2020-15705, CVE-2020-15706, CVE-2020-15707
USN: 4432-1
IAVA: 2020-A-0349