4 matches found
CVE-2023-43632
creationtimestamp| type| source ---|---|--- 2023-09-21 18:31:05+00:00| seen| https://t.me/cibsecurity/70893...
CVE-2023-43632
As noted in the “VTPM.md” file in the eve documentation, “VTPM is a server listening on port 8877 in EVE, exposing limited functionality of the TPM to the clients. VTPM allows clients to execute tpm2-tools binaries from a list of hardcoded options” The communication with this server is done using...
CVE-2023-43632
CVE-2023-43632 affects the EVE vTPM server (vtpm_server) listening on port 8877. The server reads a 4-byte header (uint32 size) and allocates a payload of that size on the stack, enabling a stack-based overflow with attacker-controlled data. Consequences listed: system crash or full control of vt...
CVE-2023-43632 Freely Allocate Buffer on The Stack With Data From Socket
As noted in the “VTPM.md” file in the eve documentation, “VTPM is a server listening on port 8877 in EVE, exposing limited functionality of the TPM to the clients. VTPM allows clients to execute tpm2-tools binaries from a list of hardcoded options” The communication with this server is done using...