What the vulnerability does

01Description

In Keylime before 6.3.0, unsanitized UUIDs can be passed by a rogue agent and can lead to log spoofing on the verifier and registrar.

Key dates

02Disclosure timeline

September 21, 2022 CVE published
May 27, 2025 Record updated