CVE-2023-38021 | Fortanix EnclaveOS up to 3.31 on Intel SGX System Call enclave_ecall improper authorization (GHSA-v3vm-9h66-wm76)

Posted by Angelo Barbosa | Dec 30, 2023 | CVE

A vulnerability was found in Fortanix EnclaveOS up to 3.31 on Intel SGX. It has been rated as critical. This issue affects the function enclave_ecall of the component System Call Handler. The manipulation leads to improper authorization.

The identification of this vulnerability is CVE-2023-38021. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2023-38021 | Fortanix EnclaveOS up to 3.31 on Intel SGX System Call enclave_ecall improper authorization (GHSA-v3vm-9h66-wm76)

Related Posts

CVE-2024-34697 | freescout-helpdesk freescout up to 1.8.138 cross site scripting

CVE-2024-33697 | Rimes Gold CF7 File Download Plugin up to 2.0 on WordPress cross site scripting

CVE-2024-3878 | Tenda F1202 1.2.0.20(408) webExcptypemanFilter fromwebExcptypemanFilter page stack-based overflow

CVE-2024-31216 | fluxcd source-controller up to 1.2.4 API log file (GHSA-v554-xwgw-hc3w)