A buffer overflow in the component /Enclave.cpp of Electronics and Telecommunications Research Institute ShieldStore commit 58d455617f99705f0ffd8a27616abdf77bdc1bdc allows attackers to cause an information leak via a crafted structure from an untrusted operating system.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
Shieldstore Project
  • Shieldstore

Configuration 1 [-]

cpe:2.3:a:shieldstore_project:shieldstore:-:*:*:*:*:*:*:*
References
Link Resource
http://electronics.com Broken Link
http://shieldstore.com Broken Link
https://github.com/cocoppang/ShieldStore/blob/master/Enclave/Enclave.cpp Patch
https://github.com/cocoppang/ShieldStore/issues/19 Exploit Issue Tracking
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2023-05-09T00:00:00

Updated: 2023-05-09T00:00:00

Reserved: 2021-11-29T00:00:00

Link: CVE-2021-44283

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-05-09T03:15:09.197

Modified: 2023-05-15T15:14:52.730

Link: CVE-2021-44283

JSON object: View

cve-icon Redhat Information

No data.

CWE