Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:24894
HistoryApr 10, 2020 - 1:08 a.m.

Information Disclosure

2020-04-1001:08:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
16
kernel
vulnerability
tpm_read()
memory handling
security-related data
local user
unprivileged
tpm command

EPSS

0

Percentile

5.1%

kernel is vulnerable to information disclosure. The vulnerability exists through a flaw in the way memory containing security-related data was handled in tpm_read() could allow a local, unprivileged user to read the results of a previously run TPM command.