25 matches found
CVE-2025-36238
IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 could allow a local user with administration privileges to obtain sensitive information from a Virtual TPM through a series of PowerVM service procedures...
CVE-2025-36238
IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 could allow a local user with administration privileges to obtain sensitive information from a Virtual TPM through a series of PowerVM service procedures...
CVE-2025-36238
IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 could allow a local user with administration privileges to obtain sensitive information from a Virtual TPM through a series of PowerVM service procedures...
CVE-2025-36238 Power System Exposure of Sensitive System Information
IBM PowerVM Hypervisor FW1110.00 through FW1110.03, FW1060.00 through FW1060.51, and FW950.00 through FW950.F0 could allow a local user with administration privileges to obtain sensitive information from a Virtual TPM through a series of PowerVM service procedures...
Security Bulletin: This Power System update is being released to address CVE-2025-36238
Summary If an attacker is able to gain system administrator access a Virtual TPM can be compromised through the use of a series of PowerVM service procedures. Vulnerability Details CVEID:CVE-2025-36238 DESCRIPTION: IBM PowerVM Hypervisor could allow a local user with administration privileges to...
EUVD-2023-40661
Malicious code in bioql PyPI...
OESA-2025-2261 libtpms security update
A library providing TPM functionality for VMs. Targeted for integration into Qemu. Security Fixes: Libtpms is a library that targets the integration of TPM functionality into hypervisors, primarily into Qemu. Libtpms, which is derived from the TPM 2.0 reference implementation code published by th...
PT-2025-24896
Name of the Vulnerable Software and Affected Versions TCG TPM2.0 versions affected versions not specified AMD Ryzen processors versions not specified Description The TCG TPM2.0 reference implementation's CryptHmacSign function contains a flaw due to a lack of validation between the signature sche...
The vulnerability of the Virtual Trusted Platform Module module in Microsoft Windows operating systems allows a perpetrator to trigger a service failure.
The vulnerability of the Virtual Trusted Platform Module in Microsoft Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause service failures...
CVE-2025-21284
Windows Virtual Trusted Platform Module Denial of Service Vulnerability...
CVE-2025-21284
Technical details about CVE-2025-21284 are not provided in the connected documents. Public references exist (NVD, CVE listings) but there are no specifics in these sources about affected products, root cause, impact details, or fixes; monitor for updates.
CVE-2025-21280
CVE-2025-21280 is a Windows Virtual Trusted Platform Module Denial of Service vulnerability. Connected documents identify the affected component as the Windows Virtual TPM and note an impact on availability. The NCSC advisory lists a CVSS v3.1 base score of 5.5 (LOCAL attack, LOW privileges requi...
CVE-2025-21280 Windows Virtual Trusted Platform Module Denial of Service Vulnerability
...
Windows Virtual Trusted Platform Module Denial of Service Vulnerability
...
Windows Virtual Trusted Platform Module Denial of Service Vulnerability
...
kernel: tpm: tpm_vtpm_proxy: fix a race condition in /dev/vtpmx creation
A race condition was found in the vTPM proxy driver. The /dev/vtpmx device becomes accessible before the workqueue is initialized, potentially causing memory corruption if accessed during the initialization window...
The vulnerability of the module of the virtual trusted platform for Windows operating systems, allowing a perpetrator to execute arbitrary code
The vulnerability of the virtual trusted platform module for Windows operating systems is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to execute arbitrary code...
The vulnerability of the module of the virtual trusted platform for Windows operating systems, which allows a perpetrator to trigger a service failure
The vulnerability of the virtual trusted platform module for Windows operating systems is related to improper resource cleaning. Exploiting this vulnerability can allow an attacker to cause service failures...
CVE-2023-36718
Microsoft Virtual Trusted Platform Module Remote Code Execution Vulnerability...
Denial of service
Windows Virtual Trusted Platform Module Denial of Service Vulnerability...