tpm2-tools versions before 1.1.1 are vulnerable to a password leak due to transmitting password in plaintext from client to server when generating HMAC.
References
Link | Resource |
---|---|
https://github.com/01org/tpm2.0-tools/commit/c5d72beaab1cbbbe68271f4bc4b6670d69985157 | Patch Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: redhat
Published: 2017-06-27T14:00:00
Updated: 2017-06-27T13:57:01
Reserved: 2017-04-05T00:00:00
Link: CVE-2017-7524
JSON object: View
NVD Information
Status : Modified
Published: 2017-06-27T14:29:00.187
Modified: 2019-10-09T23:29:41.920
Link: CVE-2017-7524
JSON object: View
Redhat Information
No data.
CWE