Keylime · Keylime · CVE-2021-43310
**Name of the Vulnerable Software and Affected Versions**
Keylime versions prior to 6.3.0
**Description**
A vulnerability allows an attacker to craft a request to the agent that resets the U and V keys as if the agent were being re-added to a verifier, potentially leading to remote code execution.
**Recommendations**
For versions prior to 6.3.0, update to version 6.3.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the agent to minimize the risk of exploitation.