CVE-2009-4128

EPSS 0.04% · P12 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2009-4128

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

GNU GRand Unified Bootloader (GRUB) 2 1.97 only compares the submitted portion of a password with the actual password, which makes it easier for physically proximate attackers to conduct brute force attacks and bypass authentication by submitting a password whose length is 1.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

GNU GRUB本地身份认证绕过漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

GNU GRand Unified Bootloader (GRUB)是一个多重引导加载程序。 GNU GRUB存在本地身份认证绕过漏洞。由于GNU GRUB把提交的密码与真实密码相比较，攻击者可以通过提交一个长度值为1的密码，导致执行强力攻击和绕过本地身份认证。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2009-4128

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2009-4128

请登录查看更多情报信息。

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=555195x_refsource_CONFIRM
http://www.securityfocus.com/bid/36968vdb-entryx_refsource_BID
https://exchange.xforce.ibmcloud.com/vulnerabilities/54210vdb-entryx_refsource_XF
http://www.openwall.com/lists/oss-security/2024/01/15/3mailing-list
https://nvd.nist.gov/vuln/detail/CVE-2009-4128

Same Patch Batch · n/a · 2009-12-01 · 7 CVEs total

CVE-2009-2626		PHP zend_restore_ini_entry_cb函数内存信息泄露漏洞
CVE-2009-4120		Quick.Cart多个跨站请求伪造漏洞
CVE-2009-4121		Quick.CMS和Quick.CMS.Lite多个跨站请求伪造漏洞
CVE-2009-4117		MuPDF pdf_shade4.c 缓冲区错误漏洞
CVE-2009-4118		Cisco VPN客户端cvpnd服务整数溢出漏洞
CVE-2009-4119		Drupal Feed Element Mapper模块跨站脚本攻击漏洞

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2009-4128

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2009-4128

I. Basic Information for CVE-2009-4128

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2009-4128

III. Intelligence Information for CVE-2009-4128

Same Patch Batch · n/a · 2009-12-01 · 7 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2009-4128

Leave a comment