Skip to main content

Go Tpm

1 CVEs product

Monthly

CVE-2020-8918 Go HIGH POC PATCH This Week

An improperly initialized 'migrationAuth' value in Google's go-tpm TPM1.2 library versions prior to 0.3.0 can lead an eavesdropping attacker to discover the auth value for a key created with. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Google Information Disclosure Go Tpm
NVD GitHub
CVSS 3.1
7.1
EPSS
0.2%
EPSS 0% CVSS 7.1
HIGH POC PATCH This Week

An improperly initialized 'migrationAuth' value in Google's go-tpm TPM1.2 library versions prior to 0.3.0 can lead an eavesdropping attacker to discover the auth value for a key created with. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Google Information Disclosure Go Tpm
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy