all InfoSec news
CVE-2023-43630 (edge_virtualization_engine)
Sept. 20, 2023, 3:15 p.m. |
National Vulnerability Database web.nvd.nist.gov
due to the change that was implemented in commit
“7638364bc0acf8b5c481b5ce5fea11ad44ad7fd4�, fixing this issue alone would not solve the
problem of the config partition not being measured correctly.
Also, the “vault� key is sealed/unsealed with SHA1 PCRs instead of
SHA256.
This issue was somewhat mitigated due to all of the PCR extend functions
updating both the values of SHA256 and SHA1 for a given PCR ID.
However, …
More from web.nvd.nist.gov / National Vulnerability Database
CVE-2023-45955 (lightstrip_firmware)
6 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21380 (android)
6 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21381 (android)
6 months, 2 weeks ago |
web.nvd.nist.gov
CVE-2023-21385 (android)
6 months, 2 weeks ago |
web.nvd.nist.gov
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
Sr. Security Engineer
@ BedRock Systems | San Francisco, Boston, DC, Berlin, Munich, Bengaluru
Project Manager - Project Principal Consultant
@ SAP | Istanbul, TR, 34700
Software Security Engineer
@ Ledger | Paris, France