{"id":"CVE-2020-8944","details":"An arbitrary memory write vulnerability in Asylo versions up to 0.6.0 allows an untrusted attacker to make a call to ecall_restore using the attribute output which fails to check the range of a pointer. An attacker can use this pointer to write to arbitrary memory addresses including those within the secure enclave We recommend upgrading past commit 382da2b8b09cbf928668a2445efb778f76bd9c8a","modified":"2026-04-11T17:01:42.071017Z","published":"2020-12-15T15:15:13.707Z","references":[{"type":"EVIDENCE","url":"https://github.com/google/asylo/commit/382da2b8b09cbf928668a2445efb778f76bd9c8a"}],"affected":[{"ranges":[{"type":"GIT","repo":"https://github.com/google/asylo","events":[{"introduced":"0"},{"last_affected":"299f804acbb95a612ab7c504d25ab908aa59ae93"},{"fixed":"382da2b8b09cbf928668a2445efb778f76bd9c8a"}],"database_specific":{"versions":[{"introduced":"0"},{"last_affected":"0.6.0"}]}}],"versions":["buildenv-v0.2.0","buildenv-v0.2.1","buildenv-v0.2.2","buildenv-v0.3.0","buildenv-v0.3.1","buildenv-v0.3.2","buildenv-v0.3.3","buildenv-v0.3.4","buildenv-v0.4.0","buildenv-v0.4.1","buildenv-v0.5.0","buildenv-v0.5.1","buildenv-v0.5.2","buildenv-v0.5.3","buildenv-v0.6.0","v0.2.0","v0.2.1","v0.2.2","v0.3.0","v0.3.1","v0.3.2","v0.3.3","v0.3.4","v0.3.4.1","v0.4.0","v0.4.1","v0.5.0","v0.5.1","v0.5.2","v0.5.3","v0.6.0"],"database_specific":{"vanir_signatures":[{"id":"CVE-2020-8944-c4bb674b","signature_version":"v1","signature_type":"Function","target":{"file":"asylo/platform/primitives/sgx/ecalls.cc","function":"ecall_restore"},"deprecated":false,"digest":{"length":677,"function_hash":"292544041043139605901666954554142880038"},"source":"https://github.com/google/asylo/commit/382da2b8b09cbf928668a2445efb778f76bd9c8a"},{"id":"CVE-2020-8944-ebc3eb05","signature_version":"v1","signature_type":"Line","target":{"file":"asylo/platform/primitives/sgx/ecalls.cc"},"deprecated":false,"digest":{"line_hashes":["43796465893664919794037350362535671537","52328078366487823200871823319078263788","304446741389288734818625786649112460004","48016510177646431537891352573878220813"],"threshold":0.9},"source":"https://github.com/google/asylo/commit/382da2b8b09cbf928668a2445efb778f76bd9c8a"}],"vanir_signatures_modified":"2026-04-11T17:01:42Z","source":"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-8944.json"}}],"schema_version":"1.7.5","severity":[{"type":"CVSS_V3","score":"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N"}]}