CVE-2022-46486

CVE-2022-46486

EPSS 0.3%

A lack of pointer-validation logic in the __scone_dispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://jovanbulck.github.io/files/ccs19-tale.pdf https://jovanbulck.github.io/files/oakland24-pandora.pdf https://sconedocs.github.io/release5.7/