5.7 Medium
AI Score
Confidence
High
0.006 Low
EPSS
Percentile
78.0%
STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL.