cve/CVE-2024-29039.md at a8969e132322a214e7b78da5711159d6f891f0ab

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-06-19 17:30:12 +00:00

0xMarcio 70ad145994 Update CVE sources 2024-08-09 18:54

2024-08-09 18:54:21 +00:00

Description

tpm2 is the source repository for the Trusted Platform Module (TPM2.0) tools. This vulnerability allows attackers to manipulate tpm2_checkquote outputs by altering the TPML_PCR_SELECTION in the PCR input file. As a result, digest values are incorrectly mapped to PCR slots and banks, providing a misleading picture of the TPM state. This issue has been patched in version 5.7.

POC

Reference

https://github.com/tpm2-software/tpm2-tools/security/advisories/GHSA-8rjm-5f5f-h4q6

Github

No PoCs found on GitHub currently.

980 B Raw Blame History

CVE-2024-29039

Description

POC

Reference

Github

980 B

Raw Blame History