Lucene search
+L

8 matches found

RedhatCVE
RedhatCVE
added 2025/06/12 6:10 p.m.11 views

CVE-2025-2884

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

6.6CVSS6.5AI score0.00199EPSS
Exploits0References1
NVD
NVD
added 2025/06/10 6:15 p.m.15 views

CVE-2025-2884

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

6.6CVSS0.00199EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/06/10 5:29 p.m.51 views

CVE-2025-2884 Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

0.00199EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/06/10 5:29 p.m.4 views

CVE-2025-2884 Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

6.4AI score0.00199EPSS
Exploits0References5
OSV
OSV
added 2025/06/10 5:29 p.m.7 views

CVE-2025-2884 Out-of-Bounds read vulnerability in TCG TPM2.0 reference implementation

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0...

6.6CVSS7AI score0.00199EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/06/10 12:0 a.m.8 views

PT-2025-24896

Name of the Vulnerable Software and Affected Versions TCG TPM2.0 versions affected versions not specified AMD Ryzen processors versions not specified Description The TCG TPM2.0 reference implementation's CryptHmacSign function contains a flaw due to a lack of validation between the signature sche...

6.6CVSS8.9AI score0.00199EPSS
Exploits0References44
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.32 views

RHEL 8 : av_libtpms (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 8 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libtpms: RSA keys weaker than expected CVE-2021-3505 - tpm: TCG TPM2.0 implementations vulnerable to memo...

7.8CVSS8.6AI score0.01286EPSS
Exploits1References2
AlmaLinux
AlmaLinux
added 2023/05/09 12:0 a.m.49 views

Moderate: libtpms security update

The libtpms is a library providing Trusted Platform Module TPM functionality for virtual machines. Security Fixes: tpm: TCG TPM2.0 implementations vulnerable to memory corruption CVE-2023-1017 tpm2: TCG TPM2.0 implementations vulnerable to memory corruption CVE-2023-1018 For more details about th...

7.8CVSS7AI score0.05552EPSS
Exploits0References6
Rows per page
Query Builder