CVE-2020-8905

Confidential Information Disclosure vulnerability in Asylo

Description

A buffer length validation vulnerability in Asylo versions prior to 0.6.0 allows an attacker to read data they should not have access to. The 'enc_untrusted_recvfrom' function generates a return value which is deserialized by 'MessageReader', and copied into three different 'extents'. The length of the third 'extents' is controlled by the outside world, and not verified on copy, allowing the attacker to force Asylo to copy trusted memory data into an untrusted buffer of significantly small length.. We recommend updating Asylo to version 0.6.0 or later.

References

Link	Tags
https://github.com/google/asylo/commit/299f804acbb95a612ab7c504d25ab908aa59ae93	third party advisory patch

Frequently Asked Questions

What is the severity of CVE-2020-8905?: CVE-2020-8905 has been scored as a low severity vulnerability.
How to fix CVE-2020-8905?: To fix CVE-2020-8905, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2020-8905 being actively exploited in the wild?: As for now, there are no information to confirm that CVE-2020-8905 is being actively exploited. According to its EPSS score, there is a ~0% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2020-8905?: CVE-2020-8905 affects Google LLC Asylo.

This platform uses data from the NIST NVD, MITRE CVE, MITRE CWE, First.org and CISA KEV but is not endorsed or certified by these entities. CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site.

Description

Category

CWE-120 – Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

References

Frequently Asked Questions