Exploit for #VU25898 Information disclosure

Exploit for #VU25898 Information disclosure in Intel SGX SDK for Windows

Published: 2020-03-18

Vulnerability identifier: #VU25898

Vulnerability risk: Low

CVSSv3.1: 3 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2020-0551

CWE-ID: CWE-200

Exploitation vector: Local

Exploits in database: 1

March 18, 2020
- lvi-lfb-attack-poc (This repository contains the sources and documentation for the LVI-LFB Control Flow Hijacking attack PoC (CVE-2020-0551)) [Github]

Impact: Information disclosure

Vulnerable software:
Intel SGX SDK for Windows
Client/Desktop applications / Other client software
Intel SGX SDK for Linux
Client/Desktop applications / Other client software

Vendor: Intel