Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Use of uninitialized variable for some TDX Module before version tdx1.5 within Ring 0: Hypervisor may allow an information disclosure. Authorized adversary with a privileged user combined with a high complexity attack may enable data exposure. This result may potentially occur via local access when attack requirements are present without special internal knowledge and requires no user interaction. The potential vulnerability may impact the confidentiality (high), integrity (none) and availability (none) of the vulnerable system, resulting in subsequent system confidentiality (none), integrity (none) and availability (none) impacts.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N
Vulnerability Type
N/A
Vulnerability Title
Intel Trust Domain Extensions 安全漏洞
Vulnerability Description
Intel Trust Domain Extensions是美国英特尔(Intel)公司的一套机密虚拟化方案,旨在将机密虚拟机和非机密域软件栈(包括hypervisor、VMM和其他非可信域软件栈)隔离,确保机密虚拟机的数据不被非机密域软件获取和篡改。 Intel Trust Domain Extensions tdx1.5之前版本存在安全漏洞,该漏洞源于使用未初始化变量,可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A