CVE-2022-46486

A lack of pointer-validation logic in the sconedispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information...

CVE-2022-46487

Improper initialization of x87 and SSE floating-point configuration registers in the sconeentry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel...

CVE-2024-29971

CVE-2024-29971 concerns Scontain SCONE 5.8.0, described across multiple sources as an interface vulnerability that leads to state corruption via injected signals. The CVE entry notes a critical impact (CVSS v3.1: 9.8, Confidentiality/Integrity/Availability all high) with network attack vector and...

CVE-2022-46487

Improper initialization of x87 and SSE floating-point configuration registers in the sconeentry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel...

PT-2023-14943 · Intel · Scone

Name of the Vulnerable Software and Affected Versions: SCONE versions prior to 5.8.0 Description: A lack of pointer-validation logic in the scone dispatch component of SCONE for Intel SGX allows attackers to access sensitive information. Recommendations: For versions prior to 5.8.0, update to...