CVE-2022-46486

2023-12-3000:00:00

mitre

www.cve.org

vulnerability

scone

pointer-validation

intel sgx

sensitive information

cve-2022-46486

AI Score

5.7

Confidence

High

EPSS

0.001

Percentile

21.9%

JSON

A lack of pointer-validation logic in the __scone_dispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information.

References

jovanbulck.github.io/files/ccs19-tale.pdf

jovanbulck.github.io/files/oakland24-pandora.pdf

sconedocs.github.io/release5.7/