Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Keylime: keylime registrar dos due to incompatible database entry handling
Vulnerability Description
A flaw was found in Keylime, a remote attestation solution, where strict type checking introduced in version 7.12.0 prevents the registrar from reading database entries created by previous versions, for example, 7.11.0. Specifically, older versions store agent registration data as bytes, whereas the updated registrar expects str. This issue leads to an exception when processing agent registration requests, causing the agent to fail.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L
Vulnerability Type
不正确的类型转换
Vulnerability Title
Keylime 代码问题漏洞
Vulnerability Description
Keylime是Keylime开源的一个利用 TPM 技术的开源可扩展信任系统。 Keylime 7.12.0版本存在代码问题漏洞,该漏洞源于严格类型检查,可能导致代理注册失败。
CVSS Information
N/A
Vulnerability Type
N/A