Skip to main content

CWE-1283

Mutable Attestation or Measurement Reporting Data

2 CVEs Avg CVSS 3.7 MITRE
0
CRITICAL
0
HIGH
1
MEDIUM
1
LOW
0
POC
0
KEV

Monthly

CVE-2023-3674 PyPI LOW PATCH Monitor

A flaw was found in the keylime attestation verifier, which fails to flag a device's submitted TPM quote as faulty when the quote's signature does not validate for some reason. Rated low severity (CVSS 2.8), this vulnerability is low attack complexity.

Information Disclosure Keylime Fedora
NVD GitHub
CVSS 3.1
2.8
EPSS
0.2%
CVE-2022-1740 MEDIUM This Month

The tested version of Dominion Voting Systems ImageCast X’s on-screen application hash display feature, audit log export, and application export functionality rely on self-attestation mechanisms. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Imagecast X
NVD
CVSS 3.1
4.6
EPSS
0.2%
EPSS 0% CVSS 2.8
LOW PATCH Monitor

A flaw was found in the keylime attestation verifier, which fails to flag a device's submitted TPM quote as faulty when the quote's signature does not validate for some reason. Rated low severity (CVSS 2.8), this vulnerability is low attack complexity.

Information Disclosure Keylime Fedora
NVD GitHub
EPSS 0% CVSS 4.6
MEDIUM This Month

The tested version of Dominion Voting Systems ImageCast X’s on-screen application hash display feature, audit log export, and application export functionality rely on self-attestation mechanisms. Rated medium severity (CVSS 4.6), this vulnerability is no authentication required, low attack complexity. No vendor patch available.

Information Disclosure Imagecast X
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy