| |
Vulnerability CVE-2019-0122
Published: 2019-03-14 Modified: 2019-03-15
| Description: |
Double free in Intel(R) SGX SDK for Linux before version 2.2 and Intel(R) SGX SDK for Windows before version 2.1 may allow an authenticated user to potentially enable information disclosure or denial of service via local access. |
Type:
CWE-415 (Double Free)
CVSS2 => (AV:L/AC:L/Au:N/C:P/I:N/A:P)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
3.6/10 |
4.9/10 |
3.9/10 |
| Exploit range |
Attack complexity |
Authentication |
Local |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
None |
Partial |
References: |
https://www.intel.com/content/www/us/en/security-center/advisory/INTEL-SA-00217.html
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
