Dstack-Capsule: Pod-Level Remote Attestation for Confidential Workloads on Kubernetes

The rise of LLM-as-a-Service and other confidential cloud workloads demands cryptographic proof that user data is processed in a trusted, untampered environment. Existing solutions, notably Confidential Containers CoCo, enforce a strict "one Pod per VM" model that attests only the Guest OS stack,...

New TEE.Fail Side-Channel Attack Extracts Secrets from Intel and AMD DDR5 Secure Enclaves

A group of academic researchers from Georgia Tech, Purdue University, and Synkhronix have developed a side-channel attack called TEE.Fail that allows for the extraction of secrets from the trusted execution environment TEE in a computer's main processor, including Intel's Software Guard eXtension...

EUVD-2017-14787

Malware in sbrugna...

EUVD-2017-14784

Malware in sbrugna...

EUVD-2013-5577

Malware in sbrugna...

EUVD-2018-4125

Malware in sbrugna...

EUVD-2011-5074

Malware in sbrugna...

CVE-2013-5740

Unspecified vulnerability in the Intel Trusted Execution Technology TXT SINIT Authenticated Code Modules ACM before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202, C204, and C206 chipsets and Mobile Intel QM67 and QS67 chipsets, when the measured launch environment MLE...

CVE-2009-0066

Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology TXT allow attackers to bypass intended loader integrity protections, as demonstrated by exploitation of tboot. NOTE: as of 20090107, the only disclosure is a vague pre-advisory with no actionable...

Intel TDX 安全漏洞

Intel TDX is a CPU-level technology from Intel Corporation USA. It is used to implement the Trusted Execution Environment. Intel TDX A security vulnerability exists in versions prior to TDX TDX1.5.01.00.592, which stems from incomplete filtering of special elements and could allow an authenticate...

SUSE CVE-2013-5740

Unspecified vulnerability in the Intel Trusted Execution Technology TXT SINIT Authenticated Code Modules ACM before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202, C204, and C206 chipsets and Mobile Intel QM67 and QS67 chipsets, when the measured launch environment MLE...

SUSE CVE-2019-11090

Cryptographic timing conditions in the subsystem for IntelR PTT before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; IntelR TXE 3.1.70 and 4.0.20; IntelR SPS before versions SPSE504.01.04.305.0, SPSSoC-X04.00.04.108.0, SPSSoC-A04.00.04.191.0, SPSE304.01.04.086.0,...

The vulnerability of Microprogramming Software: Intel Converged Security and Manageability Engine (CSME) and Intel Trusted Execution Engine (TXE) arises from deficiencies in access control, allowing attackers to enhance their privileges.

The vulnerabilities of Intel Converged Security and Manageability Engine CSME and Intel Trusted Execution Engine TXE are related to deficiencies in access control. Exploiting these vulnerabilities can allow attackers to enhance their privileges...

The vulnerability of the message authentication subsystem of the RPMB protocol in Intel Trusted Execution Engine (TXE) software allows a perpetrator to enhance their privileges.

The vulnerability of the message authentication subsystem of the RPMB protocol in Intel Trusted Execution Engine TXE microprogramming software is related to authentication deficiencies. Exploiting this vulnerability can allow attackers to enhance their privileges...

Vulnerability in the Microprogramming Software System of the Intel Converged Security and Manageability Engine (CSME) and the Microprogramming Software System of the Intel Trusted Execution Engine (TXE), allowing a perpetrator to gain unauthorized access to protected information

The vulnerability in the Microprogramming Software Intel Converged Security and Manageability Engine CSME and Intel Trusted Execution Engine TXE is related to insufficient flow control. Exploitation of this vulnerability may allow an attacker to gain unauthorized access to protected information...

CVE-2020-0566

Improper Access Control in subsystem for IntelR TXE versions before 3.175 and 4.0.25 may allow an unauthenticated user to potentially enable escalation of privilege via physical access...

Intel TXE Elevation of Privilege Vulnerability

Intel TXE is a trust execution engine with hardware validation capabilities for use in CPUs central processing units from Intel Corporation in the United States. A security vulnerability exists in the subsystem in Intel TXE versions prior to 3.175 and prior to 4.0.25, which arises from a program...

CVE-2019-6190

Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Lenovo Desktop, Desktop - All in One, and ThinkStation, that could cause PCRs to be cleared intermittently after resuming from sleep S3 on systems with Intel TXT enabled...

CVE-2019-11110

Authentication bypass in the subsystem for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2019-11087

Insufficient input validation in the subsystem for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial of...