Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-36219
HistorySep 27, 2021 - 2:15 p.m.

Design/Logic Flaw

2021-09-2714:15:00
PRIOn knowledge base
www.prio-n.com
1

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.9%

JSON

An issue was discovered in SKALE sgxwallet 1.58.3. The provided input for ECALL 14 triggers a branch in trustedEcdsaSign that frees a non-initialized pointer from the stack. An attacker can chain multiple enclave calls to prepare a stack that contains a valid address. This address is then freed, resulting in compromised integrity of the enclave. This was resolved after v1.58.3 and not reproducible in sgxwallet v1.77.0.

CPENameOperatorVersion
sgxwalleteq1.58.3

Related

nvd 1
osv 1
cvelist 1
cve 1
cnvd 1
nvd
nvd
CVE-2021-36219
2021-09-27 14:15:08
osv
osv
CVE-2021-36219
2021-09-27 14:15:08
cvelist
cvelist
CVE-2021-36219
2021-09-27 13:22:28
cve
cve
CVE-2021-36219
2021-09-27 14:15:08
cnvd
cnvd
sgxwallet buffer overflow vulnerability (CNVD-2021-1012217)
2021-09-29 00:00:00

9.3 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

61.9%

JSON
Related for PRION:CVE-2021-36219
nvd1osv1cvelist1cve1cnvd1