VYPR

Open Enclave SDK

by Open Enclave

CVEs (5)

  • CVE-2019-1370MedNov 12, 2019
    risk 0.36cvss 5.5epss 0.02

    An information disclosure vulnerability exists when affected Open Enclave SDK versions improperly handle objects in memory, aka 'Open Enclave SDK Information Disclosure Vulnerability'.

  • CVE-2019-1369MedOct 10, 2019
    risk 0.36cvss 5.5epss 0.02

    An information disclosure vulnerability exists when affected Open Enclave SDK versions improperly handle objects in memory, aka 'Open Enclave SDK Information Disclosure Vulnerability'.

  • CVE-2019-0876MedApr 9, 2019
    risk 0.36cvss 5.5epss 0.02

    An information disclosure vulnerability exists when affected Open Enclave SDK versions improperly handle objects in memory, aka 'Open Enclave SDK Information Disclosure Vulnerability'.

  • CVE-2023-37479MedJul 17, 2023
    risk 0.00cvss 5.3epss 0.01

    Open Enclave is a hardware-agnostic open source library for developing applications that utilize Hardware-based Trusted Execution Environments, also known as Enclaves. There are two issues that are mitigated in version 0.19.3. First, Open Enclave SDK does not properly sanitize…

  • CVE-2020-15224MedOct 14, 2020
    risk 0.00cvss 6.8epss 0.01

    In Open Enclave before version 0.12.0, an information disclosure vulnerability exists when an enclave application using the syscalls provided by the sockets.edl is loaded by a malicious host application. An attacker who successfully exploited the vulnerability could read…