Home Packages KEV Critical Insights Jobs Pricing

Loading…

Data from OSV.dev, CISA KEV, and FIRST EPSS.Sync status GitHub

CVE-2024-49504 · VulnScope

CVE-2024-49504

EPSS 0.09%

Description

grub2 allowed attackers with access to the grub shell to access files on the encrypted disks.

How to fix CVE-2024-49504

No fixed version has been published yet. Mitigate by removing the affected package or applying upstream guidance from the references below.

Debian/grub2—no fix listed

Is CVE-2024-49504 being exploited?

Low — EPSS is 0.1%, meaning exploitation activity has not been observed at scale.

Affected packages (1)

from 0

References (2)

ADVISORYsecurity-tracker.debian.org/tracker/CVE-2024-49504
REPORTbugzilla.suse.com/show_bug.cgi?id=CVE-2024-49504

Metadata

Published: 11/13/2024
Modified: 3/23/2026

Also known as:

openSUSE-SU-2024:14464-1other
SUSE-SU-2025:0586-1suse
SUSE-SU-2025:20511-1suse
SUSE-SU-2025:20863-1suse