CVE-2025-2884 | THREATINT

Description

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0

PUBLISHED Reserved 2025-03-27 | Published 2025-06-10 | Updated 2025-06-13 | Assigner certcc

Problem types

CWE-125 Out-of-bounds Read

Product status

Any version before 1.83

affected

References

www.intel.com/...ecurity-center/advisory/intel-sa-01209.html

www.kb.cert.org/vuls/id/282450

trustedcomputinggroup.org/about/security/

trustedcomputinggroup.org/...ry-Spec-v1.83-Errata_v1_pub.pdf (TPM2.0 Errata)

trustedcomputinggroup.org/...oads/VRT0009-Advisory-FINAL.pdf (Vendor Advisory)

github.com/...ommit/04b2d8e9afc0a9b6bffe562a23e58c0de11532d1 (Vendor Patch)

www.cve.org/CVERecord?id=CVE-2025-49133 (Related CVE)

cve.org (CVE-2025-2884)

nvd.nist.gov (CVE-2025-2884)

Download JSON

help @ threatint.eu