CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Schneier on Security•added 2025/11/24 12:3 p.m.•4 views

IACR Nullifies Election Because of Lost Decryption Key

The International Association of Cryptologic Research--the academic cryptography association that's been putting conferences like Crypto back when "crypto" meant "cryptography" and Eurocrypt since the 1980s--had to nullify an online election when trustee Moti Yung lost his decryption key. For thi...

6.8AI score

NVD•added 2025/10/09 9:15 p.m.•2 views

CVE-2025-61779

Confidential Containers's Trustee project contains tools and components for attesting confidential guests and providing secrets to them. In versions prior to 0.15.0, the attestation-policy endpoint didn't check if the kbs-client submitting the request was actually authenticated had the right key...

8.7CVSS0.00057EPSS

EUVD•added 2025/10/09 8:53 p.m.•2 views

EUVD-2025-33556

8.7CVSS6.2AI score0.00057EPSS

Cvelist•added 2025/10/09 8:53 p.m.•6 views

CVE-2025-61779 Trustee's attestation-policy endpoint is not protected by admin autentication

8.7CVSS0.00057EPSS

CVE•added 2025/10/09 8:53 p.m.•18 views

CVE-2025-61779

The CVE-2025-61779 issue affects Confidential Containers' Trustee project. In versions before 0.15.0, the attestation-policy endpoint did not verify that the kbs-client submitting a request was actually authenticated, allowing an unauthenticated client to change the attestation policy. The vulner...

8.7CVSS6.3AI score0.00057EPSS

CNNVD•added 2025/10/09 12:0 a.m.•1 views

trustee 安全漏洞

trustee is an open source component of Confidential Containers. A security vulnerability exists in trustee versions prior to 0.15.0, which stems from an attestation-policy endpoint that does not validate the identity of a kbs-client, which could result in an arbitrary kbs-client modifying the...

8.7CVSS6.8AI score0.00057EPSS

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-17947

Malware in sbrugna...

5.5CVSS5.1AI score0.00111EPSS

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-4189

Malware in sbrugna...

9.8CVSS9.5AI score0.00271EPSS

Exploits0References2

Fedora•added 2025/09/26 1:10 a.m.•4 views

[SECURITY] Fedora 42 Update: trustee-guest-components-0.13.0-3.fc42

Running in a confidential VM, gather confidential-computing evidence, send it to Trustee and get secrets. A part of the confidential-containers project...

6.5CVSS6.9AI score0.00277EPSS

Tenable Nessus•added 2025/09/25 12:0 a.m.•3 views

Fedora 42 : rust-az-cvm-vtpm / rust-az-snp-vtpm / rust-az-tdx-vtpm / etc (2025-2408b72979)

The remote Fedora 42 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2025-2408b72979 advisory. Rebase trustee-guest-components to v0.13.0 Include rust-az-???-vtpm packages rebase to version 0.7.4 Adjust patches to work with 'sev' version 6...

6.5CVSS6.5AI score0.00277EPSS

Exploits0References5

NVD•added 2025/09/23 9:15 p.m.•3 views

CVE-2025-58354

Kata Containers is an open source project focusing on a standard implementation of lightweight Virtual Machines VMs that perform like containers. In Kata Containers versions from 3.20.0 and before, a malicious host can circumvent initdata verification. On TDX systems running confidential guests, ...

6.9CVSS0.00067EPSS

Exploits0References2

CVE•added 2025/09/23 9:8 p.m.•7 views

CVE-2025-58354

Kata Containers prior to 3.21.0 are affected. On TDX systems with confidential guests, a malicious host can bypass initdata verification, allowing the attacker to launch arbitrary workloads while maintaining valid trustee attestation to impersonate benign workloads. The issue has been fixed in Ka...

6.9CVSS6.6AI score0.00067EPSS

Exploits0References2

Packet Storm News•added 2025/06/06 12:0 a.m.•2 views

PrivTru: a Privacy-By-Design Data Trustee Minimizing Information Leakage

Data trustees serve as intermediaries that facilitate secure data sharing between independent parties. This paper offers a technical perspective on Data trustees, guided by privacy-by-design principles. We introduce PrivTru, an instantiation of a data trustee that provably achieves optimal privac...

6.7AI score

RedhatCVE•added 2025/05/22 1:8 p.m.•4 views

CVE-2018-6185

In Cloudera Navigator Key Trustee KMS 5.12 and 5.13, incorrect default ACL values allow remote access to purge and undelete API calls on encryption zone keys. The Navigator Key Trustee KMS includes 2 API calls in addition to those in Apache Hadoop KMS: purge and undelete. The KMS ACL values for...

5.5CVSS7.2AI score0.00111EPSS

RedhatCVE•added 2025/02/05 3:25 a.m.•3 views

CVE-2024-51997

Trustee is a set of tools and components for attesting confidential guests and providing secrets to them. The ART Attestation Results Token token, generated by AS, could be manipulated by MITM attacker, but the verifier CoCo Verification Demander like KBS could still verify it successfully. In th...

8.1CVSS6.9AI score0.00175EPSS

NVD•added 2024/11/08 7:15 p.m.•5 views

CVE-2024-51997

8.1CVSS0.00175EPSS

Vulnrichment•added 2024/11/08 6:40 p.m.•6 views

CVE-2024-51997 The Attestation Results Token can be arbitrarily modified without being detected in Trustee

8.1CVSS7.1AI score0.00175EPSS

Cvelist•added 2024/11/08 6:40 p.m.•11 views

CVE-2024-51997 The Attestation Results Token can be arbitrarily modified without being detected in Trustee

8.1CVSS0.00175EPSS

CVE•added 2024/11/08 6:40 p.m.•39 views

CVE-2024-51997

Trustee (open-source) contains a vulnerability in the Attestation Results Token (ART) where the embedded jwk in the ART payload can be replaced by a MITM attacker, allowing the attacker to sign crafted tokens with their private key. The current code path (v0.8.0) does not detect such replacement,...

8.1CVSS8AI score0.00175EPSS