Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
LinuxfoundationEdge Virtualization Engine*

3 matches found

CVE
CVEadded 2023/09/20 2:58 p.m.92 views

CVE-2023-43635

Summary of CVE-2023-43635 / GHSA-4JVR-VJ2C-8Q37 : In EVE-OS measured boot, the vault key is sealed using SHA1 PCRs instead of SHA256 PCRs. The TPM PCRs that are used to seal/unseal the key for encrypting the vault directory may be SHA1-enabled while SHA256 PCRs are not consistently used, enabling...

8.8CVSS8.7AI score0.0011EPSS
CVE
CVEadded 2023/09/20 2:50 p.m.66 views

CVE-2023-43636

Summary: CVE-2023-43636 concerns EVE OS measured boot not validating the entire root filesystem (rootfs). The PCR-based attestation covers BIOS/GRUB/kernel cmdline/initrd but not the complete rootfs, allowing an attacker to alter the squashfs root image and gain control without triggering attesta...

8.8CVSS8.6AI score0.00125EPSS
CVE
CVEadded 2023/09/21 1:17 p.m.58 views

CVE-2023-43631

The CVE-2023-43631 issue affects the Pillar/EVE container in EVE OS. On boot, the container checks for /config/authorized_keys and, if a valid public key is present, enables SSH on port 22 for root login. The /config partition is not protected by measured boot, is mutable, and unencrypted, allowi...

8.8CVSS8.7AI score0.0016EPSS