Arbitrary trusted memory overwrite vulnerability in Asylo
CVE-2020-8904

6.4MEDIUM

Key Information:

Vendor: Google
Status: Asylo
Vendor: CVE Published:; 12 August 2020

Summary

An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. As the ecall_restore function fails to validate the range of the output_len pointer, an attacker can manipulate the tmp_output_len value and write to an arbitrary location in the trusted (enclave) memory. We recommend updating Asylo to version 0.6.0 or later.

Affected Version(s)

Asylo stable < 0.6.0

References

https://github.com/google/asylo/commit/e582f36ac49ee11a21...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.4

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Aug 12, 2020
Vulnerability Reserved
Feb 12, 2020

Collectors

NVD DatabaseMitre Database

Credit

Qinkun Bao, Zhaofeng Chen, Mingshen Sun, and Kang Li from Baidu Security