{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2019-11-22T15:38:53", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://tpm.fail"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.f5.com/csp/article/K32412503?utm_source=f5support&amp%3Butm_medium=RSS"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03972en_us"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://support.lenovo.com/us/en/product_security/LEN-29406"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://www.st.com/content/st_com/en/campaigns/tpm-update.html"}, {"tags": ["x_refsource_MISC"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190024"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2019-16863", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://tpm.fail", "refsource": "MISC", "url": "http://tpm.fail"}, {"name": "https://support.f5.com/csp/article/K32412503?utm_source=f5support&utm_medium=RSS", "refsource": "CONFIRM", "url": "https://support.f5.com/csp/article/K32412503?utm_source=f5support&utm_medium=RSS"}, {"name": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03972en_us", "refsource": "CONFIRM", "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03972en_us"}, {"name": "https://support.lenovo.com/us/en/product_security/LEN-29406", "refsource": "CONFIRM", "url": "https://support.lenovo.com/us/en/product_security/LEN-29406"}, {"name": "https://www.st.com/content/st_com/en/campaigns/tpm-update.html", "refsource": "CONFIRM", "url": "https://www.st.com/content/st_com/en/campaigns/tpm-update.html"}, {"name": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190024", "refsource": "MISC", "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190024"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T01:24:48.370Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://tpm.fail"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.f5.com/csp/article/K32412503?utm_source=f5support&amp%3Butm_medium=RSS"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03972en_us"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://support.lenovo.com/us/en/product_security/LEN-29406"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://www.st.com/content/st_com/en/campaigns/tpm-update.html"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190024"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2019-16863", "datePublished": "2019-11-14T02:07:52", "dateReserved": "2019-09-24T00:00:00", "dateUpdated": "2024-08-05T01:24:48.370Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:st:st33tphf2espi_firmware:71.0:*:*:*:*:*:*:*", "matchCriteriaId": "1E02FA82-86F3-455A-96B4-0CF6AD5300AB", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf2espi_firmware:71.4:*:*:*:*:*:*:*", "matchCriteriaId": "D45CA39E-D389-4814-9F17-BB80E31111D6", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf2espi_firmware:71.12:*:*:*:*:*:*:*", "matchCriteriaId": "16E689C5-8859-4324-929D-5F22BF852699", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf2espi_firmware:73.0:*:*:*:*:*:*:*", "matchCriteriaId": "00ED1FEA-D1BD-46B0-98C0-318431C2BDF2", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf2espi_firmware:73.4:*:*:*:*:*:*:*", "matchCriteriaId": "97A26020-0E69-43D9-8422-51802E70111C", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf2espi_firmware:73.8:*:*:*:*:*:*:*", "matchCriteriaId": "262725D9-6D98-41C7-827F-AE4FA29E779D", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:st:st33tphf2espi:-:*:*:*:*:*:*:*", "matchCriteriaId": "69A66F8A-B19E-42EC-9050-4EDD6810F6F9", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:st:st33tphf2ei2c_firmware:73.5:*:*:*:*:*:*:*", "matchCriteriaId": "208125BB-4384-410A-8694-1C55949BA585", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf2ei2c_firmware:73.9:*:*:*:*:*:*:*", "matchCriteriaId": "B31602FD-7B13-440F-9A8E-3B8CB560B129", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:st:st33tphf2ei2c:-:*:*:*:*:*:*:*", "matchCriteriaId": "9236BB07-5AB5-4361-8632-500FF117FC8D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:st:st33tphf20spi_firmware:74.0:*:*:*:*:*:*:*", "matchCriteriaId": "1A4B6FAF-F55B-48FC-8CF5-14416C696C20", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf20spi_firmware:74.4:*:*:*:*:*:*:*", "matchCriteriaId": "EECD04C3-257B-4269-B62F-6F4364BEBCD3", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf20spi_firmware:74.8:*:*:*:*:*:*:*", "matchCriteriaId": "A5C09245-C219-4D4C-AECF-BFECB5BDAC9D", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf20spi_firmware:74.16:*:*:*:*:*:*:*", "matchCriteriaId": "54267EB9-94CA-41D9-987C-0B310E620161", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:st:st33tphf20spi:-:*:*:*:*:*:*:*", "matchCriteriaId": "5AD1B922-F920-48CD-AD8A-8FFF07E7005C", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:st:st33tphf20i2c_firmware:74.5:*:*:*:*:*:*:*", "matchCriteriaId": "305B9B97-8EFE-4666-82EF-3BA7059F3925", "vulnerable": true}, {"criteria": "cpe:2.3:o:st:st33tphf20i2c_firmware:74.9:*:*:*:*:*:*:*", "matchCriteriaId": "23448585-9D09-44FB-B26E-A7074AE9B9C4", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:st:st33tphf20i2c:-:*:*:*:*:*:*:*", "matchCriteriaId": "66CEA512-EA0A-4E31-891B-27AC1E7B5E00", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL."}, {"lang": "es", "value": "Los dispositivos STMicroelectronics ST33TPHF2ESPI TPM antes del 12-09-2019, permiten a atacantes extraer la clave privada ECDSA por medio de un ataque de sincronizaci\u00f3n de canal lateral porque la multiplicaci\u00f3n escalar de ECDSA es manejada inapropiadamente, tambi\u00e9n se conoce como TPM-FAIL."}], "id": "CVE-2019-16863", "lastModified": "2024-11-21T04:31:13.540", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2019-11-14T03:15:11.510", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://tpm.fail"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190024"}, {"source": "cve@mitre.org", "url": "https://support.f5.com/csp/article/K32412503?utm_source=f5support&amp%3Butm_medium=RSS"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03972en_us"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://support.lenovo.com/us/en/product_security/LEN-29406"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "https://www.st.com/content/st_com/en/campaigns/tpm-update.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://tpm.fail"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV190024"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://support.f5.com/csp/article/K32412503?utm_source=f5support&amp%3Butm_medium=RSS"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03972en_us"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "https://support.lenovo.com/us/en/product_security/LEN-29406"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.st.com/content/st_com/en/campaigns/tpm-update.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-203"}, {"lang": "en", "value": "CWE-327"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "hw: ECDSA signature timing vulnerabilities in TPM module", "id": "1788755", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1788755"}, "csaw": false, "cvss3": {"cvss3_base_score": "6.8", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:N/A:N", "status": "draft"}, "cwe": "CWE-385", "details": ["STMicroelectronics ST33TPHF2ESPI TPM devices before 2019-09-12 allow attackers to extract the ECDSA private key via a side-channel timing attack because ECDSA scalar multiplication is mishandled, aka TPM-FAIL.", "Cryptographic timing vulnerabilities were discovered in certain versions of the Trusted Platform Module (TPM) firmware distributed by Intel and STMicroelectronics. Software that uses the TPM to compute ECDSA signatures could leak information through the timing of ECDSA signature operations, allowing an attacker to recover parts of the private key."], "mitigation": {"lang": "en:us", "value": "To remediate this vulnerability, install relevant firmware updates from your hardware vendor and follow their advice to regenerate keys that may be vulnerable or compromised. STMicroelectronics, Intel and OEMs have published firmware updates and advice at the links provided in the External References section."}, "name": "CVE-2019-16863", "package_state": [{"cpe": "cpe:/o:redhat:enterprise_linux:6", "fix_state": "Not affected", "package_name": "linux-firmware", "product_name": "Red Hat Enterprise Linux 6"}, {"cpe": "cpe:/o:redhat:enterprise_linux:7", "fix_state": "Not affected", "package_name": "linux-firmware", "product_name": "Red Hat Enterprise Linux 7"}, {"cpe": "cpe:/o:redhat:enterprise_linux:8", "fix_state": "Not affected", "package_name": "linux-firmware", "product_name": "Red Hat Enterprise Linux 8"}], "public_date": "2020-01-08T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2019-16863\nhttps://nvd.nist.gov/vuln/detail/CVE-2019-16863\nhttps://tpm.fail/\nhttps://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-00241.html\nhttps://www.st.com/content/st_com/en/campaigns/tpm-update.html"], "statement": "This is a vulnerability in TPM firmware distributed by hardware vendors, not by Red Hat. Red Hat Enterprise Linux exposes the TPM device at /dev/tpm* where it is available for software with the correct privileges to use. Customers are advised to always ensure that firmware updates from hardware vendors are kept up to date with security fixes.", "threat_severity": "Moderate"}