CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2020-5499

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1710%
EPSS Percentile2.49th
Published2020年1月4日
Last Modified2024年11月21日

Vulnerability Description

Baidu Rust SGX SDK through 1.0.8 has an enclave ID race. There are non-deterministic results in which, sometimes, two global IDs are the same.

Affected Platforms (CPE)

📦
Apache

Rust Sgx Sdk

<= 1.0.8

References & Advisories

🔗 https://github.com/wssgcsc58/CVEs/tree/master/baidurustsgxsdk_enclaveid_race
🔗 https://github.com/wssgcsc58/CVEs/tree/master/baidurustsgxsdk_enclaveid_race

相關漏洞威脅

CVE-2021-241174.9

In Apache Teaclave Rust SGX SDK 1.1.3, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator...

CVE-2020-135010.0

A remote code execution vulnerability exists in Windows Domain Name System servers when they fail to properly handle requests, aka...

CVE-2020-1470110.0

Vulnerability in the Oracle SD-WAN Aware product of Oracle Communications Applications (component: User Interface). The supported ...

CVE-2020-2418610.0

A Remote Code Execution vulnerability exists in the gVectors wpDiscuz plugin 7.0 through 7.0.4 for WordPress, which allows unauthe...