Vulnerabilities > Scontain
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-30 | CVE-2022-46486 | Release of Invalid Pointer or Reference vulnerability in Scontain Scone A lack of pointer-validation logic in the __scone_dispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information. | 5.5 |
| 2023-12-30 | CVE-2022-46487 | Improper Initialization vulnerability in Scontain Scone Improper initialization of x87 and SSE floating-point configuration registers in the __scone_entry component of SCONE before 5.8.0 for Intel SGX allows a local attacker to compromise the execution integrity of floating-point operations in an enclave or access sensitive information via side-channel analysis. | 7.8 |
| 2023-12-30 | CVE-2023-38023 | Unspecified vulnerability in Scontain Scone An issue was discovered in SCONE Confidential Computing Platform before 5.8.0 for Intel SGX. | 5.5 |