CVE-2021-22550

High

An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave. It is recommended…

Google·CWE-823·Published 2021-06-08

CVSS

7.8

EPSS

0.00

KEV

Exploits

cve.orgen

253 chars

An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave. It is recommended to update past 0.6.3 or git commit https://github.com/google/asylo/commit/a47ef55db2337d29de19c50cd29b0deb2871d31c

NVDen

253 chars

NVDes

296 chars

Un atacante puede modificar los punteros de la memoria del enclave para sobrescribir direcciones de memoria arbitrarias dentro del enclave seguro. Se recomienda actualizar a partir de la versión 0.6.3 o el git commit https://github.com/google/asylo/commit/a47ef55db2337d29de19c50cd29b0deb2871d31c

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
2.0	Primary	NVD	4.6	3.9	6.4	AV:L/AC:L/Au:N/C:P/I:P/A:P
3.1	Primary	NVD	7.8	1.8	5.9	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H