CVE-2019-16863

Publication date

2019-11-14 02:07:52

Family

mitre

State

PUBLISHED

Description

STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL.