Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Asylo Security Vulnerabilities - 2021

cve
cve

CVE-2021-22548

An attacker can change the pointer to untrusted memory to point to trusted memory region which causes copying trusted memory to trusted memory, if the latter is later copied out, it allows for reading of memory regions from the trusted region. It is recommended to update past 0.6.2 or git commit ht...

7.8CVSS

7.6AI Score

0.001EPSS

2021-06-08 02:15 PM
22
2
cve
cve

CVE-2021-22549

An attacker can modify the address to point to trusted memory to overwrite arbitrary trusted memory. It is recommended to update past 0.6.2 or git commit https://github.com/google/asylo/commit/53ed5d8fd8118ced1466e509606dd2f473707a5c

7.8CVSS

7.6AI Score

0.0004EPSS

2021-06-08 02:15 PM
28
4
cve
cve

CVE-2021-22550

An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave. It is recommended to update past 0.6.3 or git commit https://github.com/google/asylo/commit/a47ef55db2337d29de19c50cd29b0deb2871d31c

7.8CVSS

7.5AI Score

0.0004EPSS

2021-06-08 02:15 PM
25
4
cve
cve

CVE-2021-22552

An untrusted memory read vulnerability in Asylo versions up to 0.6.1 allows an untrusted attacker to pass a syscall number in MessageReader that is then used by sysno() and can bypass validation. This can allow the attacker to read memory from within the secure enclave. We recommend updating to Asy...

5.5CVSS

5.3AI Score

0.0005EPSS

2021-08-02 04:15 PM
22