CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

RedhatCVE•added 2025/05/23 2:20 a.m.•3 views

CVE-2023-38022

An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager CCM Platform before 3.29 for Intel SGX. Insufficient pointer validation allows a local attacker to access unauthorized information. This relates to strlen and sgxiswithinuser...

5.5CVSS6.6AI score0.00029EPSS

Exploits0References1

OSV•added 2023/12/30 3:15 a.m.•1 views

CVE-2023-38021

An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager CCM Platform before 3.32 for Intel SGX. Lack of pointer-alignment validation logic in entry functions allows a local attacker to access unauthorized information. This relates to the enclaveecall function and system call...

5.5CVSS5.8AI score0.00035EPSS

Exploits0References5

NVD•added 2023/12/30 3:15 a.m.•14 views

CVE-2023-38021

5.5CVSS0.00035EPSS

Exploits0References5

ATTACKERKB•added 2023/12/30 3:15 a.m.•1 views

CVE-2023-38022

5.5CVSS6.1AI score0.00029EPSS

Exploits0References3

ATTACKERKB•added 2023/12/30 3:15 a.m.•0 views

CVE-2023-38021

5.5CVSS6.1AI score0.00035EPSS

Exploits0References6

OSV•added 2023/12/30 3:15 a.m.•0 views

CVE-2023-38022

5.5CVSS5.8AI score0.00029EPSS

Exploits0References2

Prion•added 2023/12/30 3:15 a.m.•12 views

Design/Logic Flaw

1.7CVSS6.9AI score0.00035EPSS

Exploits0References5Affected Software1

Prion•added 2023/12/30 3:15 a.m.•14 views

Null pointer dereference

1.7CVSS6.9AI score0.00029EPSS

Exploits0References2Affected Software1

CVE•added 2023/12/30 12:0 a.m.•48 views

CVE-2023-38021

CVE-2023-38021 relates to Fortanix EnclaveOS Confidential Computing Manager (CCM) Platform prior to 3.32 for Intel SGX. A lack of pointer-alignment validation in enclave_ecall entry functions enables a local attacker to access unauthorized information via the system call layer. Impact is describe...

5.5CVSS5.3AI score0.00035EPSS

Exploits0References5Affected Software1

Cvelist•added 2023/12/30 12:0 a.m.•17 views

CVE-2023-38021

5.6AI score0.00035EPSS

Exploits0References5

Vulnrichment•added 2023/12/30 12:0 a.m.•13 views

CVE-2023-38022

6.6AI score0.00029EPSS

Exploits0References2

CNNVD•added 2023/12/30 12:0 a.m.•3 views

Fortanix EnclaveOS Confidential Computing Manager Platform Security Vulnerability

Fortanix EnclaveOS Confidential Computing Manager Platform is a cloud-native service from Fortanix, Inc. that provides a complete solution for confidential computing in the cloud and in local workloads. A security vulnerability exists in Fortanix EnclaveOS Confidential Computing Manager Platform...

5.5CVSS6.4AI score0.00035EPSS

Exploits0References6

Cvelist•added 2023/12/30 12:0 a.m.•11 views

CVE-2023-38022

5.6AI score0.00029EPSS

Exploits0References2

CVE•added 2023/12/30 12:0 a.m.•57 views

CVE-2023-38022

Fortanix EnclaveOS CCM Platform (Intel SGX) before 3.29 is affected by insufficient pointer validation in the strlen/sgx_is_within_user logic, enabling a local attacker with low privileges to access unauthorized information. Impact: confidentiality only (high). Exploitation details not fully desc...

5.5CVSS5.3AI score0.00029EPSS

Exploits0References2Affected Software1

CNNVD•added 2023/12/30 12:0 a.m.•1 views

Fortanix EnclaveOS Confidential Computing Manager Platform Security Vulnerability

5.5CVSS6.4AI score0.00029EPSS

Exploits0References3

Positive Technologies•added 2023/12/29 12:0 a.m.•3 views

PT-2023-26249 · Fortanix · Fortanix Enclaveos Confidential Computing Manager (Ccm) Platform

Name of the Vulnerable Software and Affected Versions: Fortanix EnclaveOS Confidential Computing Manager CCM Platform versions prior to 3.29 Description: An issue was discovered in the Fortanix EnclaveOS Confidential Computing Manager CCM Platform, allowing a local attacker to access unauthorized...

5.5CVSS5.2AI score0.00029EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by