QwikSec

Security Database

CVE

CWE

Training

CVE-2022-3500

Published: Nov 22, 2022

Modified: Apr 29, 2025

PUBLISHED

Description

A vulnerability was found in keylime. This security issue happens in some circumstances, due to some improperly handled exceptions, there exists the possibility that a rogue agent could create errors on the verifier that stopped attestation attempts for that host leaving it in an attested state but not verifying that anymore.

Vendor	Product	Versions
n/a	keylime	affected `keylime 6.5.2`

Weaknesses (CWE)

References

https://access.redhat.com/security/cve/CVE-2022-3500

https://github.com/keylime/keylime/pull/1128

FEDORA-2022-5a6ed3607d

vendor-advisory

FEDORA-2022-7a312cde45

vendor-advisory

FEDORA-2022-8ad3246cc0

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.