Medium severity5.5OSV Advisory· Published Apr 28, 2025· Updated Apr 15, 2026
CVE-2025-4002
CVE-2025-4002
Description
A vulnerability was found in RefindPlusRepo RefindPlus 0.14.2.AB and classified as problematic. Affected by this issue is the function GetDebugLogFile of the file Library/MemLogLib/BootLog.c. The manipulation leads to null pointer dereference. Attacking locally is a requirement. The patch is identified as d2143a1e2deefddd9b105fb7160763c4f8d47ea2. It is recommended to apply a patch to fix this issue.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2v0.12.0.AA, v0.12.0.AB, v0.12.0.AN, …+ 1 more
- (no CPE)range: v0.12.0.AA, v0.12.0.AB, v0.12.0.AN, …
- (no CPE)range: =0.14.2.AB
Patches
Vulnerability mechanics
References
6News mentions
0No linked articles in our index yet.