CVE-2020-8936 MEDIUM

CVE-2020-8936: Arbitrary enclave memory overwrite vulnerability in ECall ecall_restore

Vendor Google Llc
Product Asylo
Weakness CWE-125
Published December 15, 2020
Last update August 4, 2024

CVSS base score

5.3/10
Attack vector Local
Attack complexity High
Privileges required Low
User interaction None
Confidentiality High
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N

What the vulnerability does

01Description

An arbitrary memory overwrite vulnerability in Asylo versions up to 0.6.0 allows an attacker to make a host call to UntrustedCall. UntrustedCall failed to validate the buffer range within sgx_params and allowed the host to return a pointer that was an address within the enclave memory. This allowed an attacker to read memory values from within the enclave.

Key dates

02Disclosure timeline

December 15, 2020 CVE published
August 4, 2024 Record updated