CVE-2018-6622 - An issue was discovered that affects all producers of BIOS firmware who make a certain realistic int

CVE-2018-6622

Summary

An issue was discovered that affects all producers of BIOS firmware who make a certain realistic interpretation of an obscure portion of the Trusted Computing Group (TCG) Trusted Platform Module (TPM) 2.0 specification. An abnormal case is not handled properly by this firmware while S3 sleep and can clear TPM 2.0. It allows local users to overwrite static PCRs of TPM and neutralize the security features of it, such as seal/unseal and remote attestation.

References

Vulnerable Configurations

cpe:2.3:a:trustedcomputinggroup:trusted_platform_module:2.0:*:*:*:*:*:*:*
cpe:2.3:a:trustedcomputinggroup:trusted_platform_module:2.0:*:*:*:*:*:*:*

CVSS

Base:	3.6 (as of 03-10-2019 - 00:03)
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:N/I:P/A:P

refmap via4

bid	105203
misc	https://www.usenix.org/conference/usenixsecurity18/presentation/han

Last major update

03-10-2019 - 00:03

Published

17-08-2018 - 18:29

Last modified

03-10-2019 - 00:03