Dstack-Capsule: Pod-Level Remote Attestation for Confidential Workloads on Kubernetes

The rise of LLM-as-a-Service and other confidential cloud workloads demands cryptographic proof that user data is processed in a trusted, untampered environment. Existing solutions, notably Confidential Containers CoCo, enforce a strict "one Pod per VM" model that attests only the Guest OS stack,...

New TEE.Fail Side-Channel Attack Extracts Secrets from Intel and AMD DDR5 Secure Enclaves

A group of academic researchers from Georgia Tech, Purdue University, and Synkhronix have developed a side-channel attack called TEE.Fail that allows for the extraction of secrets from the trusted execution environment TEE in a computer's main processor, including Intel's Software Guard eXtension...

EUVD-2017-14784

Malware in sbrugna...

EUVD-2017-14787

Malware in sbrugna...

EUVD-2013-5577

Malware in sbrugna...

EUVD-2018-4125

Malware in sbrugna...

EUVD-2011-5074

Malware in sbrugna...

CVE-2013-5740

Unspecified vulnerability in the Intel Trusted Execution Technology TXT SINIT Authenticated Code Modules ACM before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202, C204, and C206 chipsets and Mobile Intel QM67 and QS67 chipsets, when the measured launch environment MLE...

CVE-2009-0066

Multiple unspecified vulnerabilities in Intel system software for Trusted Execution Technology TXT allow attackers to bypass intended loader integrity protections, as demonstrated by exploitation of tboot. NOTE: as of 20090107, the only disclosure is a vague pre-advisory with no actionable...

Intel TDX 安全漏洞

Intel TDX is a CPU-level technology from Intel Corporation USA. It is used to implement the Trusted Execution Environment. Intel TDX A security vulnerability exists in versions prior to TDX TDX1.5.01.00.592, which stems from incomplete filtering of special elements and could allow an authenticate...

SUSE CVE-2013-5740

Unspecified vulnerability in the Intel Trusted Execution Technology TXT SINIT Authenticated Code Modules ACM before 1.2, as used by the Intel QM77, QS77, Q77 Express, C216, Q67 Express, C202, C204, and C206 chipsets and Mobile Intel QM67 and QS67 chipsets, when the measured launch environment MLE...

SUSE CVE-2019-11090

Cryptographic timing conditions in the subsystem for IntelR PTT before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; IntelR TXE 3.1.70 and 4.0.20; IntelR SPS before versions SPSE504.01.04.305.0, SPSSoC-X04.00.04.108.0, SPSSoC-A04.00.04.191.0, SPSE304.01.04.086.0,...

CVE-2020-0566

Improper Access Control in subsystem for IntelR TXE versions before 3.175 and 4.0.25 may allow an unauthenticated user to potentially enable escalation of privilege via physical access...

Intel TXE Elevation of Privilege Vulnerability

Intel TXE is a trust execution engine with hardware validation capabilities for use in CPUs central processing units from Intel Corporation in the United States. A security vulnerability exists in the subsystem in Intel TXE versions prior to 3.175 and prior to 4.0.25, which arises from a program...

CVE-2019-6190

Lenovo was notified of a potential denial of service vulnerability, affecting various versions of BIOS for Lenovo Desktop, Desktop - All in One, and ThinkStation, that could cause PCRs to be cleared intermittently after resuming from sleep S3 on systems with Intel TXT enabled...

CVE-2019-11110

Authentication bypass in the subsystem for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2019-11087

Insufficient input validation in the subsystem for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable escalation of privilege, information disclosure or denial of...

CVE-2019-11101

Insufficient input validation in the subsystem for IntelR CSME before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.10 and 14.0.10; IntelR TXE before versions 3.1.70 and 4.0.20 may allow a privileged user to potentially enable information disclosure via local access...

Intel TXE and Intel Converged Security and Management Engine Code Issue Vulnerabilities

Intel Converged Security and Management Engine CSME and Intel TXE are both products of Intel Corporation, U.S.A. Intel Converged Security and Management Engine is a security management engine. Intel TXE is a trust execution engine with hardware authentication capabilities for use in CPUs central...

Intel TXE and Intel Converged Security and Management Engine Input Validation Error Vulnerability (CNVD-2020-18615)

Intel Converged Security and Management Engine CSME and Intel TXE are both products of Intel Corporation, U.S.A. Intel Converged Security and Management Engine is a security management engine. Intel TXE is a trust execution engine with hardware authentication capabilities for use in CPUs central...