36 matches found
MAL-2025-36189 Malicious code in test-mlw2-scone-tikka (npm)
The package test-mlw2-scone-tikka was found to contain malicious code...
MAL-2025-36188 Malicious code in test-mlw2-scone-swaly (npm)
The package test-mlw2-scone-swaly was found to contain malicious code...
Malicious code in test-mlw2-scone-tikka (npm)
The package test-mlw2-scone-tikka was found to contain malicious code...
Malicious code in test-mlw2-scone-swaly (npm)
The package test-mlw2-scone-swaly was found to contain malicious code...
CVE-2024-29971
Scontain SCONE 5.8.0 has an interface vulnerability that leads to state corruption via injected signals...
CVE-2022-46486
A lack of pointer-validation logic in the sconedispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information...
CVE-2022-46487
Improper initialization of x87 and SSE floating-point configuration registers in the sconeentry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel...
CVE-2024-29971
Scontain SCONE 5.8.0 has an interface vulnerability that leads to state corruption via injected signals...
CVE-2024-29971
Scontain SCONE 5.8.0 has an interface vulnerability that leads to state corruption via injected signals...
CVE-2024-29971
Scontain SCONE 5.8.0 has an interface vulnerability that leads to state corruption via injected signals...
CVE-2024-29971
CVE-2024-29971 concerns Scontain SCONE 5.8.0, described across multiple sources as an interface vulnerability that leads to state corruption via injected signals. The CVE entry notes a critical impact (CVSS v3.1: 9.8, Confidentiality/Integrity/Availability all high) with network attack vector and...
CVE-2023-38023
An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. Lack of pointer-alignment logic in sconedispatch and other entry functions allows a local attacker to access unauthorized information, aka an "AEPIC Leak."...
CVE-2023-38023
An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. Lack of pointer-alignment logic in sconedispatch and other entry functions allows a local attacker to access unauthorized information, aka an "AEPIC Leak."...
CVE-2022-46486
A lack of pointer-validation logic in the sconedispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information...
CVE-2022-46486
A lack of pointer-validation logic in the sconedispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information...
CVE-2022-46486
A lack of pointer-validation logic in the sconedispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information...
CVE-2022-46487
Improper initialization of x87 and SSE floating-point configuration registers in the sconeentry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel...
CVE-2023-38023
An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. Lack of pointer-alignment logic in sconedispatch and other entry functions allows a local attacker to access unauthorized information, aka an "AEPIC Leak."...
CVE-2022-46487
Improper initialization of x87 and SSE floating-point configuration registers in the sconeentry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel...
Input validation
Improper initialization of x87 and SSE floating-point configuration registers in the sconeentry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel...