Lucene search
K
MicrosoftOpen Enclave Software Development Kit

4 matches found

CVE
CVE
added 2021/07/14 5:53 p.m.99 views

CVE-2021-33767

The CVE concerns Open Enclave SDK with an Elevation of Privilege vulnerability. Connected sources describe an issue of insecure privilege management in the Open Enclave SDK, enabling privilege escalation. Details about affected versions or a fix are not specified in the provided documents; one PT...

8.2CVSS7.3AI score0.00787EPSS
CVE
CVE
added 2019/10/10 1:28 p.m.77 views

CVE-2019-1369

Summary: CVE-2019-1369 is an information-disclosure vulnerability in Microsoft Open Enclave SDK. The issue arises when affected Open Enclave SDK versions improperly handle objects in memory, enabling an attacker to obtain information stored in the Enclave. The Red Hat/NVD/OSV/MSRC entries corrobo...

5.5CVSS5.2AI score0.01976EPSS
CVE
CVE
added 2019/11/12 6:52 p.m.73 views

CVE-2019-1370

CVE-2019-1370 is an information-disclosure vulnerability in affected Open Enclave SDK versions caused by improper handling of objects in memory. The issue allows an attacker who has compromised the host application running the enclave to access sensitive information stored in the enclave. Microso...

5.5CVSS5.1AI score0.01538EPSS
CVE
CVE
added 2019/04/09 8:20 p.m.63 views

CVE-2019-0876

CVE-2019-0876 is an information-disclosure vulnerability in Open Enclave SDK caused by improper handling of objects in memory. Exploitation requires local access and attacker-host enclave progression; the vulnerability could enable disclosure of sensitive information stored in memory. Remediation...

5.5CVSS5AI score0.0156EPSS