4 matches found
CVE-2021-33767
The CVE concerns Open Enclave SDK with an Elevation of Privilege vulnerability. Connected sources describe an issue of insecure privilege management in the Open Enclave SDK, enabling privilege escalation. Details about affected versions or a fix are not specified in the provided documents; one PT...
CVE-2019-1369
Summary: CVE-2019-1369 is an information-disclosure vulnerability in Microsoft Open Enclave SDK. The issue arises when affected Open Enclave SDK versions improperly handle objects in memory, enabling an attacker to obtain information stored in the Enclave. The Red Hat/NVD/OSV/MSRC entries corrobo...
CVE-2019-1370
CVE-2019-1370 is an information-disclosure vulnerability in affected Open Enclave SDK versions caused by improper handling of objects in memory. The issue allows an attacker who has compromised the host application running the enclave to access sensitive information stored in the enclave. Microso...
CVE-2019-0876
CVE-2019-0876 is an information-disclosure vulnerability in Open Enclave SDK caused by improper handling of objects in memory. Exploitation requires local access and attacker-host enclave progression; the vulnerability could enable disclosure of sensitive information stored in memory. Remediation...