CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-23948

A flaw was found in Keylime before 6.3.0. The logic in the Keylime agent for checking for a secure mount can be fooled by previously created unprivileged mounts allowing secrets to be leaked to other processes on the host.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 54.8%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2022-23948

Keylime » Keylime » Version: N/A

cpe:2.3:a:keylime:keylime:-
Keylime » Keylime » Version: 2.0

cpe:2.3:a:keylime:keylime:2.0
Keylime » Keylime » Version: 2.1

cpe:2.3:a:keylime:keylime:2.1
Keylime » Keylime » Version: 2.1.1

cpe:2.3:a:keylime:keylime:2.1.1
Keylime » Keylime » Version: 2.2

cpe:2.3:a:keylime:keylime:2.2
Keylime » Keylime » Version: 2.3

cpe:2.3:a:keylime:keylime:2.3
Keylime » Keylime » Version: 2.3.1

cpe:2.3:a:keylime:keylime:2.3.1
Keylime » Keylime » Version: 2.3.2

cpe:2.3:a:keylime:keylime:2.3.2
Keylime » Keylime » Version: 2.3.3

cpe:2.3:a:keylime:keylime:2.3.3
Keylime » Keylime » Version: 2.3.4

cpe:2.3:a:keylime:keylime:2.3.4
Keylime » Keylime » Version: 3.0.0

cpe:2.3:a:keylime:keylime:3.0.0
Keylime » Keylime » Version: 3.1.0

cpe:2.3:a:keylime:keylime:3.1.0
Keylime » Keylime » Version: 3.1.1

cpe:2.3:a:keylime:keylime:3.1.1
Keylime » Keylime » Version: 4.0.0

cpe:2.3:a:keylime:keylime:4.0.0
Keylime » Keylime » Version: 4.0.1

cpe:2.3:a:keylime:keylime:4.0.1
Keylime » Keylime » Version: 5.0.0

cpe:2.3:a:keylime:keylime:5.0.0
Keylime » Keylime » Version: 5.1.0

cpe:2.3:a:keylime:keylime:5.1.0
Keylime » Keylime » Version: 5.2.0

cpe:2.3:a:keylime:keylime:5.2.0
Keylime » Keylime » Version: 5.3.0

cpe:2.3:a:keylime:keylime:5.3.0
Keylime » Keylime » Version: 5.3.1

cpe:2.3:a:keylime:keylime:5.3.1
Keylime » Keylime » Version: 5.4.0

cpe:2.3:a:keylime:keylime:5.4.0
Keylime » Keylime » Version: 5.4.1

cpe:2.3:a:keylime:keylime:5.4.1
Keylime » Keylime » Version: 5.5.0

cpe:2.3:a:keylime:keylime:5.5.0
Keylime » Keylime » Version: 5.6.0

cpe:2.3:a:keylime:keylime:5.6.0
Keylime » Keylime » Version: 5.6.1

cpe:2.3:a:keylime:keylime:5.6.1
Keylime » Keylime » Version: 5.6.2

cpe:2.3:a:keylime:keylime:5.6.2
Keylime » Keylime » Version: 5.7.0

cpe:2.3:a:keylime:keylime:5.7.0
Keylime » Keylime » Version: 5.7.1

cpe:2.3:a:keylime:keylime:5.7.1
Keylime » Keylime » Version: 5.7.2

cpe:2.3:a:keylime:keylime:5.7.2
Keylime » Keylime » Version: 5.7.3

cpe:2.3:a:keylime:keylime:5.7.3
Keylime » Keylime » Version: 5.8.0

cpe:2.3:a:keylime:keylime:5.8.0
Keylime » Keylime » Version: 5.8.1

cpe:2.3:a:keylime:keylime:5.8.1
Keylime » Keylime » Version: 6.0.0

cpe:2.3:a:keylime:keylime:6.0.0
Keylime » Keylime » Version: 6.0.1

cpe:2.3:a:keylime:keylime:6.0.1
Keylime » Keylime » Version: 6.1.0

cpe:2.3:a:keylime:keylime:6.1.0
Keylime » Keylime » Version: 6.1.1

cpe:2.3:a:keylime:keylime:6.1.1
Keylime » Keylime » Version: 6.2.0

cpe:2.3:a:keylime:keylime:6.2.0
Keylime » Keylime » Version: 6.2.1

cpe:2.3:a:keylime:keylime:6.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-23948

Products

Pricing

Contact Us