An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave. It is recommended to update past 0.6.3 or git commit https://github.com/google/asylo/commit/a47ef55db2337d29de19c50cd29b0deb2871d31c
References
Link | Resource |
---|---|
https://github.com/google/asylo/commit/a47ef55db2337d29de19c50cd29b0deb2871d31c | Patch Third Party Advisory |
Configurations
Information
Published : 2021-06-08 07:15
Updated : 2021-06-22 08:37
NVD link : CVE-2021-22550
Mitre link : CVE-2021-22550
JSON object : View
CWE
CWE-668
Exposure of Resource to Wrong Sphere
Products Affected
- asylo