CVEs-PoC/2023/CVE-2023-1017.md at efebdd4f2d72a3494ec92163e9e88e00a3646b8a

CalvinBackup/CVEs-PoC

Fork 0

mirror of https://github.com/0xMarcio/cve.git synced 2026-05-25 00:14:09 +02:00

Files

T

0xMarcio cb00e1339f Update CVE list 2025-09-29 21:09

2025-09-29 21:09:30 +02:00

Description

An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can lead to denial of service (crashing the TPM chip/process or rendering it unusable) and/or arbitrary code execution in the TPM context.

POC

Reference

No PoCs from references.

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/bollwarm/SecToolSet
https://github.com/vSphere8upgrade/7u3-to-8u1
https://github.com/vSphere8upgrade/7u3-to-8u2

1.1 KiB Raw Blame History

CVE-2023-1017

Description

POC

Reference

Github

1.1 KiB

Raw Blame History