GitHub_MVULNRICHMENT:CVE-2024-29039CVE-2024-29039 Missing check in tpm2_checkquote allows attackers to misrepresent the TPM state
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
9.1%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
tpm2 is the source repository for the Trusted Platform Module (TPM2.0) tools. This vulnerability allows attackers to manipulate tpm2_checkquote outputs by altering the TPML_PCR_SELECTION in the PCR input file. As a result, digest values are incorrectly mapped to PCR slots and banks, providing a misleading picture of the TPM state. This issue has been patched in version 5.7.
CNA Affected
[
{
"vendor": "tpm2-software",
"product": "tpm2-tools",
"versions": [
{
"status": "affected",
"version": "< 5.7"
}
]
}
]ADP Affected
[
{
"cpes": [
"cpe:2.3:a:tpm2_software:tpm2_tools:*:*:*:*:*:*:*:*"
],
"vendor": "tpm2_software",
"product": "tpm2_tools",
"versions": [
{
"status": "affected",
"version": "5.7"
}
],
"defaultStatus": "unknown"
}
]Related
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
AI Score
Confidence
High
EPSS
Percentile
9.1%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial