Listen to this Post
The vulnerability exists in the dcap-qvl library’s quote verification process for SGX/TDX. It fetches QE Identity collateral (qe_identity, qe_identity_signature, qe_identity_issuer_chain) from the PCCS service. However, the library omits cryptographic verification of the QE Identity signature against its provided certificate chain. It also fails to enforce mandatory policy constraints on the QE Report, such as validating MRSIGNER, ISVPRODID, and ISVSVN fields. This allows an attacker to forge the QE Identity data. By crafting malicious collateral, an attacker can whitelist a non-Intel or compromised Quoting Enclave. This forged QE can then sign arbitrary, untrusted quotes. The verifier, relying on the defective library, accepts these quotes as valid. Consequently, the remote attestation security model is completely bypassed, as trust in the quote signing entity is broken.
Platform: dcap-qvl
Version: Prior to 0.3.9
Vulnerability: Cryptographic verification bypass
Severity: Critical
date: Not specified
Prediction: Patched in 0.3.9
What Undercode Say:
Analytics:
npm list @phala/dcap-qvl
npm update @phala/[email protected]
npm uninstall @phala/dcap-qvl-node @phala/dcap-qvl-web
npm install @phala/dcap-qvl
how Exploit:
Forge QE Identity.
Protection from this CVE:
Upgrade to 0.3.9.
Impact:
Bypasses remote attestation.
🎯Let’s Practice Exploiting & Learn Patching For Free:
Sources:
Reported By: github.com
Extra Source Hub:
Undercode

