CVE-2023-37479
- EPSS 0.25%
- Veröffentlicht 17.07.2023 23:15:08
- Zuletzt bearbeitet 21.11.2024 08:11:47
Open Enclave is a hardware-agnostic open source library for developing applications that utilize Hardware-based Trusted Execution Environments, also known as Enclaves. There are two issues that are mitigated in version 0.19.3. First, Open Enclave SDK...
CVE-2020-15224
- EPSS 0.1%
- Veröffentlicht 14.10.2020 19:15:13
- Zuletzt bearbeitet 21.11.2024 05:05:07
In Open Enclave before version 0.12.0, an information disclosure vulnerability exists when an enclave application using the syscalls provided by the sockets.edl is loaded by a malicious host application. An attacker who successfully exploited the vul...
CVE-2020-15107
- EPSS 0.1%
- Veröffentlicht 15.07.2020 22:15:13
- Zuletzt bearbeitet 21.11.2024 05:04:49
In openenclave before 0.10.0, enclaves that use x87 FPU operations are vulnerable to tampering by a malicious host application. By violating the Linux System V Application Binary Interface (ABI) for such operations, a host app can compromise the exec...