CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-26933

Trusted Computing Group (TCG) Trusted Platform Module Library Family 2.0 Library Specification Revisions 1.38 through 1.59 has Incorrect Access Control during a non-orderly TPM shut-down that uses USE_DA_USED. Improper initialization of this shut-down may result in susceptibility to a dictionary attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 15.4%

CVSS Severity

CVSS v3 Score 7.2

CVSS v2 Score 3.6

References

https://trustedcomputinggroup.org/about/security/
https://trustedcomputinggroup.org/wp-content/uploads/TCGVRT004-Advisory-FINAL.pdf
https://trustedcomputinggroup.org/about/security/
https://trustedcomputinggroup.org/wp-content/uploads/TCGVRT004-Advisory-FINAL.pdf

Products affected by CVE-2020-26933

Trustedcomputinggroup » Trusted Platform Module » Version: 2.0

cpe:2.3:a:trustedcomputinggroup:trusted_platform_module:2.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-26933

Products

Pricing

Contact Us