web-logs2

2 exploits Active since Jan 2022
CVE-2022-23303 NOMISEC CRITICAL WORKING POC
hostapd and wpa_supplicant < 2.10 - Side Channel Attack via SAE Cache Access Patterns
The implementations of SAE in hostapd before 2.10 and wpa_supplicant before 2.10 are vulnerable to side channel attacks as a result of cache access patterns. NOTE: this issue exists because of an incomplete fix for CVE-2019-9494.
CVSS 9.8
CVE-2022-27499 NOMISEC LOW WORKING POC
Intel SGX SDK < 2.17.100.1 and < 2.18.100.1 - Use-After-Free
Premature release of resource during expected lifetime in the Intel(R) SGX SDK software may allow a privileged user to potentially enable information disclosure via local access.
CVSS 2.5