CVE-2021-22549

An attacker can modify the address to point to trusted memory to overwrite arbitrary trusted memory. It is recommended to update past 0.6.2 or git commit https://github.com/google/asylo/commit/53ed5d8fd8118ced1466e509606dd2f473707a5c
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:google:asylo:*:*:*:*:*:*:*:*

History

22 Jun 2021, 15:10

Type Values Removed Values Added
CPE cpe:2.3:a:google:asylo:*:*:*:*:*:*:*:*
CWE CWE-668
CVSS v2 : unknown
v3 : unknown
v2 : 4.6
v3 : 7.8
References (MISC) https://github.com/google/asylo/commit/ecfcd0008b6f8f63c6fa3cc1b62fcd4a52f2c0ad - (MISC) https://github.com/google/asylo/commit/ecfcd0008b6f8f63c6fa3cc1b62fcd4a52f2c0ad - Patch, Third Party Advisory

08 Jun 2021, 15:17

Type Values Removed Values Added
New CVE

Information

Published : 2021-06-08 14:15

Updated : 2024-02-04 21:47


NVD link : CVE-2021-22549

Mitre link : CVE-2021-22549

CVE.ORG link : CVE-2021-22549


JSON object : View

Products Affected

google

  • asylo
CWE
CWE-668

Exposure of Resource to Wrong Sphere

CWE-823

Use of Out-of-range Pointer Offset