CVE-2023-1017

EUVD-2023-23309
An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process or rendering it unusable) and/or arbitrary code execution in the TPM context.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
Affected Products (NVD)
VendorProductVersion
trustedcomputinggrouptrusted_platform_module
2.0:revision_1.16
trustedcomputinggrouptrusted_platform_module
2.0:revision_1.38
trustedcomputinggrouptrusted_platform_module
2.0:revision_1.59
microsoftwindows_10_1507
𝑥
< 10.0.10240.19805
microsoftwindows_10_1607
𝑥
< 10.0.14393.5786
microsoftwindows_10_1809
𝑥
< 10.0.17763.4131
microsoftwindows_10_20h2
𝑥
< 10.0.19042.2728
microsoftwindows_10_21h2
𝑥
< 10.0.19044.2728
microsoftwindows_10_22h2
𝑥
< 10.0.19045.2728
microsoftwindows_11_21h2
𝑥
< 10.0.22000.1696
microsoftwindows_11_22h2
𝑥
< 10.0.22621.1413
microsoftwindows_server_2016
𝑥
< 10.0.14393.5786
microsoftwindows_server_2019
𝑥
< 10.0.17763.4131
microsoftwindows_server_2022
𝑥
< 10.0.20348.1607
𝑥
= Vulnerable software versions
Windows Releases
Platform
Version
Windows 10
(x64)
KB5023713
1607 (x64)
KB5023697
1809 (x64)
KB5023702
21H2 (x64)
KB5023696
22H2 (x64)
KB5023696
Windows 11
21H2 (x64)
KB5023698
22H2 (x64)
KB5023706
Windows Server 2016
Server Core
KB5023697
Standard
KB5023697
Windows Server 2019
Server Core
KB5023702
Standard
KB5023702
Windows Server 2022
Server Core
KB5023786
Standard
KB5023786
Debian logo
Debian Releases
Debian Product
Codename
libtpms
bookworm
0.9.2-3.1
fixed
bookworm (security)
vulnerable
sid
0.9.2-3.1
fixed
trixie
0.9.2-3.1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
libtpms
bionic
dne
focal
dne
jammy
Fixed 0.9.3-0ubuntu1.22.04.1
released
kinetic
Fixed 0.9.3-0ubuntu1.22.10.1
released
trusty
ignored
xenial
ignored
Common Weakness Enumeration
References
https://kb.cert.org/vuls/id/782720
https://trustedcomputinggroup.org/about/security/
https://trustedcomputinggroup.org/wp-content/uploads/TCGVRT0007-Advisory-FINAL.pdf
https://kb.cert.org/vuls/id/782720
https://trustedcomputinggroup.org/about/security/
https://trustedcomputinggroup.org/wp-content/uploads/TCGVRT0007-Advisory-FINAL.pdf
https://www.kb.cert.org/vuls/id/782720