18 Total advisories
18 Vulnerabilities
0 Malware
Vulnerabilities
CRITICAL 9.8
CVE-2026-1709
CVE-2026-1709
LOW 2.8
CVE-2023-3674
CVE-2023-3674
HIGH 8.2
CVE-2025-13609
CVE-2025-13609
UNKNOWN
CVE-2022-3500
CVE-2022-3500
CRITICAL 9.4
CVE-2026-1709
Keylime Missing Authentication for Critical Function and Improper Authentication
HIGH 8.2
CVE-2025-13609
Keylime allows users to register new agents by recycling existing UUIDs when using different TPM devices
MEDIUM 6.3
CVE-2026-6420
Keylime has a hardcoded attestation challenge nonce that allows replay attacks
MEDIUM 6.3
GHSA-wc6p-4gwj-jcr8
Duplicate Advisory: Keylime has a hardcoded attestation challenge nonce that allows replay attacks
UNKNOWN
CVE-2022-1053
CVE-2022-1053
CRITICAL 9.1
CVE-2022-1053
Tenant and Verifier might not use the same registrar data
CRITICAL 9.4
GHSA-27jc-jmp8-qfw5
Duplicate Advisory: Keylime Missing Authentication for Critical Function and Improper Authentication
MEDIUM 6.5
CVE-2023-38201
Keylime registrar and (untrusted) Agent can be bypassed by an attacker
MEDIUM 5.1
CVE-2022-3500
Keylime: unhandled exceptions could lead to invalid attestation states
MEDIUM 4.3
CVE-2025-1057
Keylime registrar is vulnerable to Denial-of-Service attack when updated to version 7.12.0
LOW 2.3
CVE-2023-3674
keylime fails to flag device as untrusted when signature does not validate
HIGH 7.5
CVE-2023-38200
Keylime's registrar vulnerable to Denial-of-service attack via a single open connection
HIGH 7.5
GHSA-9gjg-834p-5gvv
Duplicate Advisory: Keylime's registrar vulnerable to Denial-of-service attack via a single open connection
MEDIUM 6.5
CVE-2023-38201
CVE-2023-38201
Ready to move
Start Securing
Free, no credit card | First findings in minutes