CVE-2024-0151

Insufficient argument checking in Secure state Entry functions in software using Cortex-M Security Extensions CMSE, that has been compiled using toolchains that implement 'Arm v8-M Security Extensions Requirements on Development Tools' prior to version 1.4, allows an attacker to pass values to...

CVE-2024-0151

CVE-2024-0151 affects software using Cortex-M Security Extensions (CMSE). The issue arises from insufficient argument checking in Secure state Entry functions, allowing values out of range for types smaller than 32-bits to be passed into secure state, potentially causing incorrect operations. Pub...

CVE-2023-38021

An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager CCM Platform before 3.32 for Intel SGX. Lack of pointer-alignment validation logic in entry functions allows a local attacker to access unauthorized information. This relates to the enclaveecall function and system call...

PT-2023-26250 · Intel · Intel Sgx

Name of the Vulnerable Software and Affected Versions: SCONE Confidential Computing Platform versions prior to 5.8.0 Description: An issue was discovered in the SCONE Confidential Computing Platform, where the lack of pointer-alignment logic in scone dispatch and other entry functions allows a...

PT-2023-26248 · Fortanix +1 · Fortanix Enclaveos Confidential Computing Manager (Ccm) Platform +1

Name of the Vulnerable Software and Affected Versions: Fortanix EnclaveOS Confidential Computing Manager CCM Platform versions prior to 3.32 for Intel SGX Description: An issue was discovered in the Fortanix EnclaveOS Confidential Computing Manager CCM Platform, which relates to a lack of...