Every CVE whose affected-product data names Intel Sgx Sdk, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (11)
CVE-2018-18098 — CVSS 7.3 (high): Improper file verification in install routine for Intel(R) SGX SDK and Platform Software for Windows before 2.2.100 may allow an escalation…
CVE-2021-0186 — CVSS 6.7 (medium): Improper input validation in the Intel(R) SGX SDK applications compiled for SGX2 enabled processors may allow a privileged user to…
CVE-2022-21125 — CVSS 5.5 (medium): Incomplete cleanup of microarchitectural fill buffers on some Intel(R) Processors may allow an authenticated user to potentially enable…
CVE-2022-21123 — CVSS 5.5 (medium): Incomplete cleanup of multi-core shared buffers for some Intel(R) Processors may allow an authenticated user to potentially enable…
CVE-2022-21127 — CVSS 5.5 (medium): Incomplete cleanup in specific special register read operations for some Intel(R) Processors may allow an authenticated user to potentially…
CVE-2022-21166 — CVSS 5.5 (medium): Incomplete cleanup in specific special register write operations for some Intel(R) Processors may allow an authenticated user to…
CVE-2021-0001 — CVSS 4.7 (medium): Observable timing discrepancy in Intel(R) IPP before version 2020 update 1 may allow authorized user to potentially enable information…
CVE-2018-3626 — CVSS 4.7 (medium): Edger8r tool in the Intel SGX SDK before version 2.1.2 (Linux) and 1.9.6 (Windows) may generate code that is susceptible to a side channel…
CVE-2022-26841 — CVSS 2.5 (low): Insufficient control flow management for the Intel(R) SGX SDK software for Linux before version 2.16.100.1 may allow an authenticated user…
CVE-2022-27499 — CVSS 2.5 (low): Premature release of resource during expected lifetime in the Intel(R) SGX SDK software may allow a privileged user to potentially enable…
CVE-2022-26509 — CVSS 2.5 (low): Improper conditions check in the Intel(R) SGX SDK software may allow a privileged user to potentially enable information disclosure via…