PT-2021-7214 · Intel · Intel Processors With Sgx

Ilya Alexandrovich

Published

2021-10-15

Updated

2023-08-08

CVE-2022-0005

CVSS v2.0

4.6

Medium

Vector

AV:L/AC:L/Au:S/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions Intel Processors with SGX (affected versions not specified)

Description The issue is related to the implementation of the JTAG interface in Intel microprogram software, which is associated with insufficient boundaries of the controlled system area. This may allow an unauthorized user to potentially enable information disclosure via physical access to sensitive information by physically probing the JTAG interface for some Intel Processors with SGX.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Cleartext Transmission of Sensitive Information

Incorrect Default Permissions

Exposure of Resource to Wrong Sphere

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-319CWE-276CWE-668

Related Identifiers

BDU:2022-03865

CVE-2022-0005

MGASA-2022-0193

Affected Products

Intel Processors With Sgx

PT-2021-7214 · Intel · Intel Processors With Sgx

CVE-2022-0005

Weakness Enumeration

Related Identifiers

Affected Products

References · 13