QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2020-12926

Back to search

CVE-2020-12926

Published: Nov 12, 2020

Modified: Aug 4, 2024

PUBLISHED

Description

The Trusted Platform Modules (TPM) reference software may not properly track the number of times a failed shutdown happens. This can leave the TPM in a state where confidential key material in the TPM may be able to be compromised. AMD believes that the attack requires physical access of the device because the power must be repeatedly turned on and off. This potential attack may be used to change confidential information, alter executables signed by key material in the TPM, or create a denial of service of the device.

VendorProductVersions

n/a

AMD's fTPM implementation

affected
Each Linux distro determines its own version.

Weaknesses (CWE)

CWE-367

References

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now