Rahul Saxena

**Name of the Vulnerable Software and Affected Versions** dcap-qvl versions prior to 0.3.9 **Description** The dcap-qvl library contains a flaw in its quote verification logic. The library retrieves QE Identity collateral from the PCCS, but fails to verify the QE Identity signature against its certificate chain and does not enforce policy constraints on the QE Report. This allows an attacker to forge QE Identity data, potentially whitelisting a malicious or non-Intel Quoting Enclave and signing untrusted quotes that a verifier would accept as valid. This circumvents the remote attestation security model. All deployments using the dcap-qvl library for SGX or TDX quote verification are affected. **Recommendations** Upgrade to dcap-qvl version 0.3.9 to implement the missing cryptographic verification for the QE Identity signature and enforce checks for MRSIGNER, ISVPRODID, and ISVSVN against the QE Report. Users of the `@phala/dcap-qvl-node` and `@phala/dcap-qvl-web` packages should switch to the pure JavaScript implementation, `@phala/dcap-qvl`.