Skip to main content

St33Tphf2Espi Firmware

1 CVEs product

Monthly

CVE-2019-16863 MEDIUM This Month

STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure St33Tphf2Espi Firmware St33Tphf2Ei2C Firmware St33Tphf20Spi Firmware St33Tphf20I2C Firmware
NVD
CVSS 3.1
5.9
EPSS
3.3%
EPSS 3% CVSS 5.9
MEDIUM This Month

STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure St33Tphf2Espi Firmware St33Tphf2Ei2C Firmware +2
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy