Vulnerability Details CVE-2020-8904
An arbitrary memory overwrite vulnerability in the trusted memory of Asylo exists in versions prior to 0.6.0. As the ecall_restore function fails to validate the range of the output_len pointer, an attacker can manipulate the tmp_output_len value and write to an arbitrary location in the trusted (enclave) memory. We recommend updating Asylo to version 0.6.0 or later.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.3%
CVSS Severity
CVSS v3 Score 6.4
CVSS v2 Score 5.5
References
Products affected by CVE-2020-8904
-
cpe:2.3:a:google:asylo:-
-
cpe:2.3:a:google:asylo:0.2.0
-
cpe:2.3:a:google:asylo:0.2.1
-
cpe:2.3:a:google:asylo:0.2.2
-
cpe:2.3:a:google:asylo:0.3.0
-
cpe:2.3:a:google:asylo:0.3.1
-
cpe:2.3:a:google:asylo:0.3.2
-
cpe:2.3:a:google:asylo:0.3.3
-
cpe:2.3:a:google:asylo:0.3.4
-
cpe:2.3:a:google:asylo:0.3.4.1
-
cpe:2.3:a:google:asylo:0.3.4.2
-
cpe:2.3:a:google:asylo:0.4.0
-
cpe:2.3:a:google:asylo:0.4.1
-
cpe:2.3:a:google:asylo:0.5.0
-
cpe:2.3:a:google:asylo:0.5.1
-
cpe:2.3:a:google:asylo:0.5.2
-
cpe:2.3:a:google:asylo:0.5.3