Vulnerability   
Search   
    Search 211766 CVE descriptions
and 97459 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2021-3565
Description:A flaw was found in tpm2-tools in versions before 5.1.1 and before 4.3.2. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a MITM attacker to unwrap the inner portion and reveal the key being imported. The highest threat from this vulnerability is to data confidentiality.
Test IDs: 1.3.6.1.4.1.25623.1.0.879792   1.3.6.1.4.1.25623.1.0.879814   1.3.6.1.4.1.25623.1.1.4.2021.1998.1   1.3.6.1.4.1.25623.1.0.853893   1.3.6.1.4.1.25623.1.1.4.2021.1999.1  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2021-3565
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/ESY6HRYUKR5ZG2K5QAJQC5S6HMKZMFK7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/XK5M7I66PBXSN663TSLAZ3V6TWWFCV7C/
https://bugzilla.redhat.com/show_bug.cgi?id=1964427
https://bugzilla.redhat.com/show_bug.cgi?id=1964427




© 1998-2021 E-Soft Inc. All rights reserved.