Security Advisory

CVE-2023-38021

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-12-30 00:00:00

Last updated 2024-08-02 17:23:27

Assigner mitre

State PUBLISHED

Description

An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager (CCM) Platform before 3.32 for Intel SGX. Lack of pointer-alignment validation logic in entry functions allows a local attacker to access unauthorized information. This relates to the enclave_ecall function and system call layer.

← Browse all CVEs View on cve.org ↗