Lucene search
CertccCVELIST:CVE-2023-1017HistoryFeb 28, 2023 - 6:02 p.m.
CVE-2023-1017 TPM2.0 vulnerable to out-of-bounds write
2023-02-2818:02:27
certcc
www.cve.org
1
tpm2.0
vulnerability
cryptparameterdecryption
denial of service
arbitrary code execution
exploitation
An out-of-bounds write vulnerability exists in TPM2.0βs Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process or rendering it unusable) and/or arbitrary code execution in the TPM context.
CNA Affected
[
{
"vendor": "Trusted Computing Group",
"product": "TPM2.0",
"versions": [
{
"status": "affected",
"version": "1.59"
}
]
},
{
"vendor": "Trusted Computing Group",
"product": "TPM2.0",
"versions": [
{
"status": "affected",
"version": "1.38"
}
]
},
{
"vendor": "Trusted Computing Group",
"product": "TPM2.0",
"versions": [
{
"status": "affected",
"version": "1.19"
}
]
}
]Related
redhatcve
redhatcve
CVE-2023-1017
2023-03-01 06:59:35
cve
cve
CVE-2023-1017
2023-02-28 19:15:16
mscve
mscve
ubuntucve
ubuntucve
CVE-2023-1017
2023-02-28 00:00:00
debiancve
debiancve
CVE-2023-1017
2023-02-28 19:15:16
nvd
nvd
CVE-2023-1017
2023-02-28 19:15:16
prion
prion
Design/Logic Flaw
2023-02-28 19:15:00
nessus
nessus
RHEL 8 : tpm (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 8 : av_libtpms (Unpatched Vulnerability)
2024-06-03 00:00:00
Fedora 36 : libtpms (2023-4afddd37a9)
2023-03-16 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: libtpms-0.9.6-1.fc37
2023-03-06 02:20:01
[SECURITY] Fedora 38 Update: libtpms-0.9.6-1.fc38
2023-03-16 00:16:59
[SECURITY] Fedora 36 Update: libtpms-0.9.6-1.fc36
2023-03-16 18:19:58
oraclelinux
oraclelinux
libtpms security update
2023-05-15 00:00:00
ibm
ibm
f5
f5
K000132856 : TPM 2.0 vulnerabilities CVE-2023-1017 and CVE-2023-1018
2023-03-03 00:00:00
osv
osv
Moderate: libtpms security update
2023-05-09 00:00:00
libtpms vulnerabilities
2023-03-07 15:26:07
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0102)
2023-03-28 00:00:00
Fedora: Security Advisory for libtpms (FEDORA-2023-64f2a84db1)
2023-03-16 00:00:00
Fedora: Security Advisory for libtpms (FEDORA-2023-4afddd37a9)
2023-03-17 00:00:00
redos
redos
ROS-20230417-04
2023-04-17 00:00:00
redhat
redhat
(RHSA-2023:1833) Moderate: virt:rhel and virt-devel:rhel security and bug fix update
2023-04-18 16:09:16
(RHSA-2023:2453) Moderate: libtpms security update
2023-05-09 05:11:15
almalinux
almalinux
Moderate: libtpms security update
2023-05-09 00:00:00
mageia
mageia
Updated libtpms packages fix security vulnerability
2023-03-19 01:16:28
thn
thn
ubuntu
ubuntu
Libtpms vulnerabilities
2023-03-07 00:00:00
amd
amd
TPM Out of Bounds Access
2023-04-11 00:00:00
cert
cert
TCG TPM2.0 implementations vulnerable to memory corruption
2023-02-28 00:00:00
avleonov
avleonov
qualysblog
qualysblog
The MarchΒ 2023 Patch Tuesday Security Update Review
2023-03-15 00:08:07
ics
ics
Siemens TIM 1531 IRC
2024-06-13 12:00:00
mskb
mskb
March 14, 2023βKB5023713 (OS Build 10240.19805)
2023-03-14 07:00:00
March 14, 2023β KB5023786 (OS Build 20348.1602)
2023-03-14 07:00:00
March 14, 2023βKB5023698 (OS Build 22000.1696)
2023-03-14 07:00:00
kaspersky
kaspersky
KLA48553 Multiple vulnerabilities in Microsoft Windows
2023-03-14 00:00:00
rapid7blog
rapid7blog
Patch Tuesday - March 2023
2023-03-14 23:46:44