CVE-2025-7844

CVE-2025-7844 affects wolfTPM (wolfSSL) via wolfTPM2_RsaKey_TpmToWolf: exporting an RSA key >2048 bits from a TPM can overflow a fixed-size stack buffer when MAX_RSA_KEY_BITS is 2048. Root cause: copying external data to a stack buffer without length validation. If MAX_RSA_KEY_BITS matches the...

CVE-2025-7844 wolfTPM library wrapper function `wolfTPM2_RsaKey_TpmToWolf` copies external data to a fixed-size stack buffer without length validation potentially causing stack-based buffer overflow

Exporting a TPM based RSA key larger than 2048 bits from the TPM could overrun a stack buffer if the default MAXRSAKEYBITS=2048 is used. If your TPM 2.0 module supports RSA key sizes larger than 2048 bit and your applications supports creating or importing an RSA private or public key larger than...

CVE-2025-7844 wolfTPM library wrapper function `wolfTPM2_RsaKey_TpmToWolf` copies external data to a fixed-size stack buffer without length validation potentially causing stack-based buffer overflow

Exporting a TPM based RSA key larger than 2048 bits from the TPM could overrun a stack buffer if the default MAXRSAKEYBITS=2048 is used. If your TPM 2.0 module supports RSA key sizes larger than 2048 bit and your applications supports creating or importing an RSA private or public key larger than...

wolfTPM 安全漏洞

wolfTPM is a highly portable TPM library open-sourced by wolfSSL. A security vulnerability exists in wolfTPM, which stems from the fact that exporting an RSA key larger than 2048 bits may result in a stack buffer overflow...

PT-2025-31869 · Wolftpm2 · Wolftpm2

Name of the Vulnerable Software and Affected Versions: wolfTPM2 affected versions not specified Description: Exporting a TPM based RSA key larger than 2048 bits from the TPM could lead to a stack buffer overflow if the default MAX RSA KEY BITS=2048 is used. This issue occurs when the wolfTPM2...