Vulnerabilities

CVE-2022-23948

by Fred · 21/09/2022

A flaw was found in Keylime before 6.3.0. The logic in the Keylime agent for checking for a secure mount can be fooled by previously created unprivileged mounts allowing secrets to be leaked to other processes on the host.

Date published : 2022-09-21

https://github.com/keylime/keylime/commit/1a4f31a6368d651222683c9debe7d6832db6f607

https://github.com/keylime/keylime/commit/d37c406e69cb6689baa2fb7964bad75209703724

Similar

Tags: Cybersecurity Alert