CVE-2021-3406

A flaw was found in keylime 5.8.1 and older. The issue in the Keylime agent and registrar code invalidates the cryptographic chain of trust from the Endorsement Key certificate to agent attestations.
Configurations

Configuration 1 (hide)

cpe:2.3:a:keylime:keylime:*:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

History

No history.

Information

Published : 2021-02-25 20:15

Updated : 2023-11-07 03:37


NVD link : CVE-2021-3406

Mitre link : CVE-2021-3406

CVE.ORG link : CVE-2021-3406


JSON object : View

Products Affected

fedoraproject

  • fedora

keylime

  • keylime
CWE
CWE-295

Improper Certificate Validation

CWE-347

Improper Verification of Cryptographic Signature