CVE-2022-46486 Information

Description

A lack of pointer-validation logic in the __scone_dispatch component of SCONE before v5.8.0 for Intel SGX allows attackers to access sensitive information.

Reference

https://sconedocs.github.io/release5.7/ https://jovanbulck.github.io/files/ccs19-tale.pdf https://jovanbulck.github.io/files/oakland24-pandora.pdf