CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

St: >> St33tphf2ei2c Firmware Security Vulnerabilities

CVE-2019-16863

STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL.

CVSS Score

5.9

EPSS Score

0.004

Published

2019-11-14

Page 1

Vulnerabilities

Vulnerable Software

St: >> St33tphf2ei2c Firmware Security Vulnerabilities

Products

Pricing

Contact Us