This page lists publicly disclosed CVE vulnerabilities affecting intel sgx_sdk (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-26841 | Insufficient control flow management for the Intel(R) SGX SDK software for Linux before version 2.16.100.1 may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 2.5 | 0.10% | 2023-02-16 | 2024-11-21 |
| CVE-2022-26509 | Improper conditions check in the Intel(R) SGX SDK software may allow a privileged user to potentially enable information disclosure via local access. | [email protected] | 2.5 | 0.07% | 2023-02-16 | 2024-11-21 |
| CVE-2022-27499 | Premature release of resource during expected lifetime in the Intel(R) SGX SDK software may allow a privileged user to potentially enable information disclosure via local access. | [email protected] | 2.5 | 2.56% | 2022-11-11 | 2025-02-05 |
| CVE-2022-21166 | Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 5.5 | 0.15% | 2022-06-15 | 2025-05-05 |
| CVE-2022-21127 | Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 5.5 | 0.47% | 2022-06-15 | 2025-05-05 |
| CVE-2022-21125 | Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 5.5 | 0.54% | 2022-06-15 | 2025-05-05 |
| CVE-2022-21123 | Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable information disclosure via local access. | [email protected] | 5.5 | 0.45% | 2022-06-15 | 2025-05-05 |
| CVE-2021-0186 | Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to potentially escalation of privilege via local access. | [email protected] | 6.7 | 0.06% | 2021-11-17 | 2024-11-21 |
| CVE-2021-0001 | Observable timing discrepancy in Intel(R) IPP before version 2020 update 1 may allow authorized user to potentially enable information disclosure via local access. | [email protected] | 4.7 | 0.13% | 2021-06-09 | 2024-11-21 |
| CVE-2018-18098 | Improper file verification in install routine for Intel(R) SGX SDK and Platform Software for Windows before 2.2.100 may allow an escalation of privilege via local access. | [email protected] | 7.3 | 0.04% | 2019-01-10 | 2024-11-21 |
| CVE-2018-3626 | Edger8r tool in the Intel SGX SDK before version 2.1.2 (Linux) and 1.9.6 (Windows) may generate code that is susceptible to a side channel potentially allowing a local user to access unauthorized information. | [email protected] | 4.7 | 0.13% | 2018-03-20 | 2024-11-21 |