Description
A buffer overflow in the component /Enclave.cpp of Electronics and Telecommunications Research Institute ShieldStore commit 58d455617f99705f0ffd8a27616abdf77bdc1bdc allows attackers to cause an information leak via a crafted structure from an untrusted operating system.
References (4)
Core 4
Core References
Broken Link
http://electronics.com
Broken Link
http://shieldstore.com
Exploit, Issue Tracking
https://github.com/cocoppang/ShieldStore/issues/19
Scores
CVSS v3
7.5
EPSS
0.0010
EPSS Percentile
27.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
poc
Automatable
yes
Technical Impact
partial
Details
CWE
CWE-120
Status
published
Products (1)
shieldstore_project/shieldstore
Published
May 09, 2023
Tracked Since
Feb 18, 2026