Lucene search
F5F5:K32412503HistoryNov 14, 2019 - 12:00 a.m.
K32412503 : Trusted Platform Module vulnerabilities CVE-2019-11090 and CVE-2019-16863
2019-11-1400:00:00
my.f5.com
35
Security Advisory Description
Cryptographic timing conditions in the subsystem for Intel® PTT before versions 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0 and 14.0.10; Intel® TXE 3.1.70 and 4.0.20; Intel® SPS before versions SPS_E5_04.01.04.305.0, SPS_SoC-X_04.00.04.108.0, SPS_SoC-A_04.00.04.191.0, SPS_E3_04.01.04.086.0, SPS_E3_04.08.04.047.0 may allow an unauthenticated user to potentially enable information disclosure via network access.
STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL.
Impact
There is no impact; F5 products are not affected by this vulnerability.
Related
thn
thn
Researchers Discover TPM-Fail Vulnerabilities Affecting Billions of Devices
2019-11-13 09:29:00
cvelist
cvelist
CVE-2019-11090
2019-12-18 21:08:39
CVE-2019-16863
2019-11-14 02:07:52
prion
prion
Code injection
2019-11-14 03:15:00
Information disclosure
2019-12-18 22:15:00
cve
cve
CVE-2019-16863
2019-11-14 03:15:11
CVE-2019-11090
2019-12-18 22:15:12
nvd
nvd
CVE-2019-11090
2019-12-18 22:15:12
CVE-2019-16863
2019-11-14 03:15:11
redhatcve
redhatcve
CVE-2019-11090
2020-01-08 23:38:58
CVE-2019-16863
2020-01-08 23:38:58
lenovo
lenovo
symantec
symantec
Trusted Platform Module CVE-2019-16863 Unspecified Security Vulnerability
2019-11-12 00:00:00
mscve
mscve
Microsoft Guidance for Vulnerability in Trusted Platform Module (TPM)
2019-11-12 08:00:00
nessus
nessus
Juniper Junos NFX150 Multiple Vulnerabilities (JSA11026)
2020-07-28 00:00:00
intel
intel
hp
hp
HPSBHF03637 rev. 3 - Intel 2019.2 IPU CSME SPS TXE AMT Security Updates
2019-11-09 00:00:00