Intel Sgx_sdk
11 CVEs affecting Intel Sgx_sdk. Latest disclosed: 2023-02-16. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-18098 | High | 7.3 | 2019-01-10 | Improper file verification in install routine for Intel(R) SGX SDK and Platform Software for Windows before 2.2.100 may allow an escalation of privilege via lo… |
CVE-2021-0186 | Medium | 6.7 | 2021-11-17 | Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to potentially escalation of pr… |
CVE-2022-21166 | Medium | 5.5 | 2022-06-15 | Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information… |
CVE-2022-21127 | Medium | 5.5 | 2022-06-15 | Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information… |
CVE-2022-21125 | Medium | 5.5 | 2022-06-15 | Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure… |
CVE-2022-21123 | Medium | 5.5 | 2022-06-15 | Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via l… |
CVE-2021-0001 | Medium | 4.7 | 2021-06-09 | Observable timing discrepancy in Intel(R) IPP before version 2020 update 1 may allow authorized user to potentially enable information disclosure via local acc… |
CVE-2018-3626 | Medium | 4.7 | 2018-03-20 | Edger8r tool in the Intel SGX SDK before version 2.1.2 (Linux) and 1.9.6 (Windows) may generate code that is susceptible to a side channel potentially allowing… |
CVE-2022-26841 | Low | 2.5 | 2023-02-16 | Insufficient control flow management for the Intel(R) SGX SDK software for Linux before version 2.16.100.1 may allow an authenticated user to potentially enabl… |
CVE-2022-26509 | Low | 2.5 | 2023-02-16 | Improper conditions check in the Intel(R) SGX SDK software may allow a privileged user to potentially enable information disclosure via local access. |
CVE-2022-27499 | Low | 2.5 | 2022-11-11 | Premature release of resource during expected lifetime in the Intel(R) SGX SDK software may allow a privileged user to potentially enable information disclosur… |