Skip to main content

Asylo CVE-2020-8936

MEDIUM
Out-of-bounds Read (CWE-125)
2020-12-15 cve-coordination@google.com
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None

Lifecycle Timeline

1
CVE Published
Dec 15, 2020 - 15:15 nvd
MEDIUM 5.5

DescriptionNVD

An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allows an attacker to make a host call to UntrustedCall. UntrustedCall failed to validate the buffer range within sgx_params and allowed the host to return a pointer that was an address within the enclave memory. This allowed an attacker to read memory values from within the enclave.

AnalysisAI

An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allows an attacker to make a host call to UntrustedCall. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. This Out-of-bounds Read vulnerability could allow attackers to read data from memory outside the intended buffer boundaries.

Technical ContextAI

This vulnerability is classified as Out-of-bounds Read (CWE-125), which allows attackers to read data from memory outside the intended buffer boundaries. An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allows an attacker to make a host call to UntrustedCall. UntrustedCall failed to validate the buffer range within sgx_params and allowed the host to return a pointer that was an address within the enclave memory. This allowed an attacker to read memory values from within the enclave. Affected products include: Google Asylo. Version information: up to 0.6.0.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Validate array indices and buffer lengths. Use memory-safe languages. Enable AddressSanitizer during testing.

More in Asylo

View all
CVE-2020-8904 CRITICAL
9.6 Aug 12

An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. Rated crit

CVE-2021-22552 MEDIUM POC
5.5 Aug 02

An untrusted memory read vulnerability in Asylo versions up to 0.6.1 allows an untrusted attacker to pass a syscall numb

CVE-2020-8944 MEDIUM POC
5.5 Dec 15

An arbitrary memory write vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to eca

CVE-2021-22550 HIGH
7.8 Jun 08

An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave.

CVE-2021-22549 HIGH
7.8 Jun 08

An attacker can modify the address to point to trusted memory to overwrite arbitrary trusted memory. Rated high severity

CVE-2021-22548 HIGH
7.8 Jun 08

An attacker can change the pointer to untrusted memory to point to trusted memory region which causes copying trusted me

CVE-2020-8935 HIGH
7.8 Dec 15

An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allow an attacker to make an Ecall_restore fun

CVE-2020-8905 MEDIUM
6.5 Aug 12

A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should no

CVE-2020-8943 MEDIUM
5.5 Dec 15

An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to enc_

CVE-2020-8942 MEDIUM
5.5 Dec 15

An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to enc_

CVE-2020-8941 MEDIUM
5.5 Dec 15

An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to enc_

CVE-2020-8940 MEDIUM
5.5 Dec 15

An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to enc_

Share

CVE-2020-8936 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy