16 matches found
CVE-2020-8905
The CVE-2020-8905 entry concerns Asylo before 0.6.0, where a buffer-length validation flaw in enc_untrusted_recvfrom allows an attacker to force copying trusted memory into a small untrusted buffer, enabling unauthorized data access. The issue is described as a memory-read vulnerability within Me...
CVE-2020-8942
The CVE-2020-8942 issue is in Asylo up to version 0.6.0, where enc_untrusted_read may return data without validating the requested size. The unchecked size allows an untrusted attacker to perform an arbitrary memory read, potentially accessing memory outside the intended buffer and within the sec...
CVE-2020-8936
CVE-2020-8936 (Asylo) affects Asylo versions up to 0.6.0. The vulnerability stems from an UntrustedCall buffer range validation failure in sgx_params, allowing a host call to return a pointer to enclave memory. As a result, an attacker could read memory values from within the enclave. No remediat...
CVE-2020-8944
The CVE-2020-8944 issue affects Asylo up to version 0.6.0 where an unchecked pointer range in the ecall_restore path allows an attacker to write arbitrary memory, including within a secure enclave. The root cause is the failure to validate the pointer range in the attribute output, enabling a loc...
CVE-2020-8904
The CVE-2020-8904 entry concerns Asylo prior to 0.6.0, where the ecall_restore function does not validate the range of the output_len pointer, allowing an attacker to manipulate tmp_output_len and overwrite arbitrary trusted (enclave) memory. Affected product: Asylo (pre-0.6.0). Impact described:...
CVE-2021-22549
CVE-2021-22549 affects Google’s Asylo framework (TrustedPrimitives::UntrustedCall). The vulnerability allows an attacker to modify an address to point to trusted memory, overwriting arbitrary trusted memory. Public details indicate exploitation is local with low attack complexity; attacker privil...
CVE-2021-22550
The CVE-2021-22550 entry concerns the Google Asylo framework where an attacker can modify pointers in enclave memory to overwrite arbitrary addresses inside a secure enclave. The vulnerability is tied to UntrustedCacheMalloc::GetBuffer (as described in CVE records) and is mitigated by updating be...
CVE-2020-8938
CVE-2020-8938 affects Asylo up to version 0.6.0, where an arbitrary memory overwrite can occur via a host call to FromkLinuxSockAddr with attacker‑controlled content and size of klinux_addr, allowing memory values to be written from inside the enclave. The issue is documented across multiple sour...
CVE-2020-8941
The CVE concerns Asylo, up to version 0.6.0, with an unchecked klinux_addr_buffer parameter in enc_untrusted_inet_pton that allows an attacker to read memory outside the intended buffer, potentially exposing memory from within a secure enclave. The root cause is a missing bounds check on the para...
CVE-2020-8935
CVE-2020-8935 describes an arbitrary memory overwrite in Asylo up to version 0.6.0 . An attacker can abuse the Ecall_restore path to reallocate untrusted code and overwrite sections of enclave memory. Practical impact: compromise of enclave memory integrity and confidentiality, with high-severity...
CVE-2020-8939
The CVE-2020-8939 issue concerns the Asylo project: an out-of-bounds read in the function enc_untrusted_inet_ntop can cause the result size to be extended, enabling memory reads from the enclave heap via memcpy. Affected component/version details are not explicitly enumerated beyond the commit re...
CVE-2020-8943
CVE-2020-8943 describes an arbitrary memory read vulnerability in the Asylo project, affecting versions up to 0.6.0. The root cause is an unchecked return size in enc_untrusted_recvfrom, allowing an untrusted attacker to read memory locations outside the intended buffer, including addresses withi...
CVE-2020-8937
CVE-2020-8937 affects Asylo versions up to 0.6.0. The vulnerability enables an arbitrary enclave memory overwrite via a host call to enc_untrusted_create_wait_queue that uses a pointer queue relying on UntrustedLocalMemcpy, failing to validate pointer location. This allows memory values to be wri...
CVE-2020-8940
CVE-2020-8940 describes an arbitrary memory read in Asylo up to version 0.6.0, where an attacker can cause a read via enc_untrusted_recvmsg using a attacker-controlled result parameter. The parameter size is unchecked, enabling reads beyond the intended buffer, potentially accessing memory locati...
CVE-2021-22548
The CVE-2021-22548 entry concerns Google Asylo. A vulnerability arises where an attacker can change a pointer from untrusted memory to reference trusted memory, causing copying of trusted memory to trusted memory. If the later copy-out occurs, this enables reading memory regions from the trusted ...
CVE-2021-22552
The CVE-2021-22552 entry concerns Google Asylo up to version 0.6.1, where an untrusted memory read vulnerability exists. The issue arises when an attacker can pass a syscall number in MessageReader, which is then used by sysno() and can bypass validation, enabling memory reads from within the sec...