CVE-2023-38021 | Fortanix EnclaveOS up to 3.31 on Intel SGX System Call enclave_ecall improper authorization (GHSA-v3vm-9h66-wm76)

Posted by Angelo Barbosa | Dec 30, 2023 | CVE

A vulnerability was found in Fortanix EnclaveOS up to 3.31 on Intel SGX. It has been rated as critical. This issue affects the function enclave_ecall of the component System Call Handler. The manipulation leads to improper authorization.

The identification of this vulnerability is CVE-2023-38021. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38021 | Fortanix EnclaveOS up to 3.31 on Intel SGX System Call enclave_ecall improper authorization (GHSA-v3vm-9h66-wm76)

Related Posts

CVE-2024-21836 | GGUF llama.cpp header.n_tensors integer overflow (TALOS-2024-1915)

CVE-2024-51661 | David Lingren Media Library Assistant Plugin up to 3.19 on WordPress os command injection

CVE-2024-4486 | Awesome Contact Form 7 for Elementor Plugin up to 2.9 on WordPress AEP Contact Form 7 Widget cross site scripting

CVE-2024-6779 | Google Chrome up to 126.0.6478.126 V8 out-of-bounds (ID 351327)