LF-Edge, Zededa

1 Product 8 CVEs

CVE Severity Distribution (All Time)

Critical

High

Medium

Low

Timeline Overview

Last 30 Days 0 CVEs

Last 6 Months 0 CVEs

Last Year 0 CVEs

Products

View all

EVE OS

3 Versions 8 CVEs

Recent CVEs

CVE-2023-43637 HIGH 2 years, 2 months ago

Due to the implementation of "deriveVaultKey", prior to version 7.10, the generated vault key would always have the last 16 bytes predetermined to b…

CVE-2023-43631 HIGH 2 years, 2 months ago

On boot, the Pillar eve container checks for the existence and content of “/config/authorized_keys”. If the file is present, and contains a support…

CVE-2023-43632 CRITICAL 2 years, 2 months ago

As noted in the “VTPM.md” file in the eve documentation, “VTPM is a server listening on port 8877 in EVE, exposing limited functionality of the TPM …

CVE-2023-43633 HIGH 2 years, 2 months ago

On boot, the Pillar eve container checks for the existence and content of “/config/GlobalConfig/global.json”. If the file exists, it overrides the …

CVE-2023-43634 HIGH 2 years, 2 months ago

When sealing/unsealing the “vault” key, a list of PCRs is used, which defines which PCRs are used. In a previous project, CYMOTIVE found that the c…

CVE-2023-43635 HIGH 2 years, 2 months ago

Vault Key Sealed With SHA1 PCRs The measured boot solution implemented in EVE OS leans on a PCR locking mechanism. Different parts of the sys…

CVE-2023-43636 HIGH 2 years, 2 months ago

In EVE OS, the “measured boot” mechanism prevents a compromised device from accessing the encrypted data located in the vault. As per the “measur…

CVE-2023-43630 HIGH 2 years, 2 months ago

PCR14 is not in the list of PCRs that seal/unseal the “vault” key, but due to the change that was implemented in commit “7638364bc0acf8b5c481b5ce5fea…