Lucene search
PRIOn knowledge basePRION:CVE-2023-3674HistoryJul 19, 2023 - 7:15 p.m.
Design/Logic Flaw
2023-07-1919:15:00
PRIOn knowledge base
www.prio-n.com
1
flaw
keylime attestation
verifier
tpm quote
signature
faulty
error
device
untrusted
nvd
A flaw was found in the keylime attestation verifier, which fails to flag a device’s submitted TPM quote as faulty when the quote’s signature does not validate for some reason. Instead, it will only emit an error in the log without flagging the device as untrusted.
Related
almalinux
almalinux
Low: keylime security update
2024-03-05 00:00:00
osv
osv
Low: keylime security update
2024-05-10 14:32:42
Low: keylime security update
2024-03-05 00:00:00
keylime fails to flag device as untrusted when signature does not validate
2023-07-19 21:30:23
redhat
redhat
(RHSA-2024:1139) Low: keylime security update
2024-03-05 15:32:21
cvelist
cvelist
redhatcve
redhatcve
CVE-2023-3674
2023-07-14 13:05:51
rocky
rocky
keylime security update
2024-05-10 14:32:42
github
github
keylime fails to flag device as untrusted when signature does not validate
2023-07-19 21:30:23
veracode
veracode
Improper Signature Validation
2023-07-20 10:30:29
nessus
nessus
RHEL 9 : keylime (RHSA-2024:1139)
2024-03-05 00:00:00
AlmaLinux 9 : keylime (ALSA-2024:1139)
2024-03-07 00:00:00
Oracle Linux 9 : keylime (ELSA-2024-1139)
2024-03-06 00:00:00
oraclelinux
oraclelinux
keylime security update
2024-03-06 00:00:00
nvd
nvd
CVE-2023-3674
2023-07-19 19:15:12
cve
cve
CVE-2023-3674
2023-07-19 19:15:12