Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Out-of-bounds read for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Software side channel adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (none) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Intel Trust Domain Extensions 缓冲区错误漏洞
Vulnerability Description
Intel Trust Domain Extensions是美国英特尔(Intel)公司的一套机密虚拟化方案,旨在将机密虚拟机和非机密域软件栈(包括hypervisor、VMM和其他非可信域软件栈)隔离,确保机密虚拟机的数据不被非机密域软件获取和篡改。 Intel Trust Domain Extensions tdx1.5之前版本存在缓冲区错误漏洞,该漏洞源于越界读取,可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A