CVE-2025-7844

Published: Aug 4, 2025

Modified: Aug 5, 2025

PUBLISHED

Description

Exporting a TPM based RSA key larger than 2048 bits from the TPM could overrun a stack buffer if the default `MAX_RSA_KEY_BITS=2048` is used. If your TPM 2.0 module supports RSA key sizes larger than 2048 bit and your applications supports creating or importing an RSA private or public key larger than 2048 bits and your application calls `wolfTPM2_RsaKey_TpmToWolf` on that key, then a stack buffer could be overrun. If the `MAX_RSA_KEY_BITS` build-time macro is set correctly (RSA bits match what TPM hardware is capable of) for the hardware target, then a stack overrun is not possible.

Vendor	Product	Versions
wolfSSL Inc.	wolfTPM	affected `0 - <= 3.9.2`

Weaknesses (CWE)

CWE-121

References

https://github.com/wolfSSL/wolfTPM/pull/427

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2025-7844

Description

Affected Products

Weaknesses (CWE)

References