Security Advisory

CVE-2025-2884

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-06-10 17:29:19

Last updated 2026-04-14 08:58:06

Assigner certcc

State PUBLISHED

Description

TCG TPM2.0 Reference implementations CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature keys algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0

← Browse all CVEs View on cve.org ↗