2 matches found
CVE-2020-8942
An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to encuntrustedread whose return size was not validated against the requrested size. The parameter size is unchecked allowing the attacker to read memory locations outside of the...
CVE-2020-8942
The CVE-2020-8942 issue is in Asylo up to version 0.6.0, where enc_untrusted_read may return data without validating the requested size. The unchecked size allows an untrusted attacker to perform an arbitrary memory read, potentially accessing memory outside the intended buffer and within the sec...