Known Vulnerabilities for products from Keylime
Listed below are 12 of the newest known vulnerabilities associated with the vendor "Keylime".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-38201 json | A flaw was found in the Keylime registrar that could allow a bypass of the challenge-response protocol during agent registrat... | 6.5 - MEDIUM | 2023-08-25 | 2023-11-12 |
| CVE-2023-38200 json | A flaw was found in Keylime. Due to their blocking nature, the Keylime registrar is subject to a remote denial of service aga... | 7.5 - HIGH | 2023-07-24 | 2023-11-12 |
| CVE-2023-3674 json | A flaw was found in the keylime attestation verifier, which fails to flag a device's submitted TPM quote as faulty when the q... | 2.8 - LOW | 2023-07-19 | 2023-11-07 |
| CVE-2022-23952 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-09-21 | 2022-12-21 |
| CVE-2022-23951 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 5.5 - MEDIUM | 2022-09-21 | 2022-12-21 |
| CVE-2022-23950 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-09-21 | 2022-12-21 |
| CVE-2022-23949 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-09-21 | 2022-12-21 |
| CVE-2022-23948 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.5 - HIGH | 2022-09-21 | 2022-12-21 |
| CVE-2022-3500 json | A vulnerability was found in keylime. This security issue happens in some circumstances, due to some improperly handled excep... | 5.1 - MEDIUM | 2022-11-22 | 2023-11-07 |
| CVE-2022-1053 json | Keylime does not enforce that the agent registrar data is the same when the tenant uses it for validation of the EK and ident... | 9.1 - CRITICAL | 2022-05-06 | 2023-11-07 |
| CVE-2021-43310 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 9.8 - CRITICAL | 2022-09-21 | 2022-12-21 |
| CVE-2021-3406 json | A flaw was found in keylime 5.8.1 and older. The issue in the Keylime agent and registrar code invalidates the cryptographic ... | 9.8 - CRITICAL | 2021-02-25 | 2023-11-07 |
Known software with vulnerabilities from Keylime
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Keylime | Keylime | 2.0 |