Description
A side-channel attack, which requires a physical presence to the TPM, can lead to extraction of an Elliptic Curve Diffie-Hellman (ECDH) key.
Published: 2026-05-14
Score: 3.8 Low
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A physical side‑channel attack exploiting TPMs on Nuvoton NPCT7xx devices can allow an attacker to extract the Elliptic Curve Diffie‑Hellman (ECDH) key, which would compromise the confidentiality of any communications protected by that key and potentially enable impersonation of the device.

Affected Systems

Nuvoton NPCT7xx controllers running firmware versions earlier than 7.2.4.0 are affected; any deployment of these devices without the recommended firmware update is vulnerable.

Risk and Exploitability

The CVSS score of 3.8 indicates moderate severity; the exploit requires physical proximity to the TPM and no network or remote code execution, which lowers the likelihood of widespread attacks but still poses a significant confidential impact for targeted or insider attackers; EPSS is not available and the vulnerability is not listed in KEV, so there is no known exploitation evidence to date.

Generated by OpenCVE AI on May 14, 2026 at 18:36 UTC.

Remediation

Vendor Solution

Upgrade to version 7.2.4.0 or above.

OpenCVE Recommended Actions

  • Apply the official firmware upgrade to version 7.2.4.0 or later as recommended by Nuvoton.
  • Lock physical access to the Nuvoton NPCT7xx devices by securing enclosures and employing tamper‑detection mechanisms.
  • Enable logging and monitor for anomalous TPM activity to detect attempts at side‑channel extraction.

Generated by OpenCVE AI on May 14, 2026 at 18:36 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 15 May 2026 11:45:00 +0000

Type Values Removed Values Added
First Time appeared Nuvoton
Nuvoton npct7xx
Vendors & Products Nuvoton
Nuvoton npct7xx

Thu, 14 May 2026 19:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Thu, 14 May 2026 17:00:00 +0000

Type Values Removed Values Added
Description A side-channel attack, which requires a physical presence to the TPM, can lead to extraction of an Elliptic Curve Diffie-Hellman (ECDH) key.
Title Nuvoton - CWE-1300: Improper Protection of Physical Side Channels
Weaknesses CWE-1300
References
Metrics cvssV3_1

{'score': 3.8, 'vector': 'CVSS:3.1/AV:P/AC:H/PR:H/UI:N/S:U/C:H/I:N/A:N'}

Subscriptions

Nuvoton Npct7xx
cve-icon MITRE

Status: PUBLISHED

Assigner: INCD

Published:

Updated: 2026-05-14T18:33:12.447Z

Reserved: 2026-04-23T16:23:24.316Z

Link: CVE-2026-6923

cve-icon Vulnrichment

Updated: 2026-05-14T18:33:05.659Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-05-14T17:16:24.213

Modified: 2026-05-14T18:24:08.747

Link: CVE-2026-6923

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-15T11:21:13Z

Weaknesses