Skip to main content

Asylo CVE-2020-8944

MEDIUM
Classic Buffer Overflow (CWE-120)
2020-12-15 cve-coordination@google.com
5.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
5.5 MEDIUM
AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Attack Vector
Local
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
High
Availability
None

Lifecycle Timeline

1
CVE Published
Dec 15, 2020 - 15:15 nvd
MEDIUM 5.5

DescriptionNVD

An arbitrary memory write vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to ecall_restore using the attribute output which fails to check the range of a pointer. An attacker can use this pointer to write to arbitrary memory addresses including those within the secure enclave We recommend upgrading past commit 382da2b8b09cbf928668a2445efb778f76bd9c8a

AnalysisAI

An arbitrary memory write vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to ecall_restore using the attribute output which fails to check the range of a. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Technical ContextAI

This vulnerability is classified as Buffer Copy without Size Check (CWE-120), which allows attackers to overflow a buffer to corrupt adjacent memory. An arbitrary memory write vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to ecall_restore using the attribute output which fails to check the range of a pointer. An attacker can use this pointer to write to arbitrary memory addresses including those within the secure enclave We recommend upgrading past commit 382da2b8b09cbf928668a2445efb778f76bd9c8a Affected products include: Google Asylo. Version information: up to 0.6.0.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Always validate buffer sizes before copy operations. Use bounded functions (strncpy, snprintf). Enable compiler protections.

More in Asylo

View all
CVE-2020-8904 CRITICAL
9.6 Aug 12

An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. Rated crit

CVE-2021-22552 MEDIUM POC
5.5 Aug 02

An untrusted memory read vulnerability in Asylo versions up to 0.6.1 allows an untrusted attacker to pass a syscall numb

CVE-2021-22550 HIGH
7.8 Jun 08

An attacker can modify the pointers in enclave memory to overwrite arbitrary memory addresses within the secure enclave.

CVE-2021-22549 HIGH
7.8 Jun 08

An attacker can modify the address to point to trusted memory to overwrite arbitrary trusted memory. Rated high severity

CVE-2021-22548 HIGH
7.8 Jun 08

An attacker can change the pointer to untrusted memory to point to trusted memory region which causes copying trusted me

CVE-2020-8935 HIGH
7.8 Dec 15

An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allow an attacker to make an Ecall_restore fun

CVE-2020-8905 MEDIUM
6.5 Aug 12

A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should no

CVE-2020-8943 MEDIUM
5.5 Dec 15

An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to enc_

CVE-2020-8942 MEDIUM
5.5 Dec 15

An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to enc_

CVE-2020-8941 MEDIUM
5.5 Dec 15

An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to enc_

CVE-2020-8940 MEDIUM
5.5 Dec 15

An arbitrary memory read vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to enc_

CVE-2020-8939 MEDIUM
5.5 Dec 15

An out of bounds read on the enc_untrusted_inet_ntop function allows an attack to extend the result size that is used by

Share

CVE-2020-8944 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy