Npct7Xx
Monthly
Nuvoton NPCT7xx TPM firmware is vulnerable to physical side-channel attacks enabling extraction of Elliptic Curve Diffie-Hellman (ECDH) keys through electromagnetic or timing analysis when an attacker has direct physical access to the TPM device. The vulnerability affects confidentiality of cryptographic material but does not enable code execution or availability attacks. No active exploitation has been publicly reported, and the attack requires specialized knowledge and physical proximity to the target system.
Nuvoton NPCT7xx TPM firmware is vulnerable to physical side-channel attacks enabling extraction of Elliptic Curve Diffie-Hellman (ECDH) keys through electromagnetic or timing analysis when an attacker has direct physical access to the TPM device. The vulnerability affects confidentiality of cryptographic material but does not enable code execution or availability attacks. No active exploitation has been publicly reported, and the attack requires specialized knowledge and physical proximity to the target system.