Vulnerabilities > CVE-2023-38022 - Unspecified vulnerability in Fortanix Confidential Computing Manager
Attack vector
LOCAL Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
NONE Availability impact
NONE Summary
An issue was discovered in Fortanix EnclaveOS Confidential Computing Manager (CCM) Platform before 3.29 for Intel SGX. Insufficient pointer validation allows a local attacker to access unauthorized information. This relates to strlen and sgx_is_within_user.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |