Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Micro 5.1 package libtpms, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (4)
CVE-2023-1017 — CVSS 7.8 (high): An out-of-bounds write vulnerability exists in TPM2.0's Module Library allowing writing of a 2-byte data past the end of TPM2.0 command in…
CVE-2021-3746 — CVSS 6.5 (medium): A flaw was found in the libtpms code that may cause access beyond the boundary of internal buffers. The vulnerability is triggered by…
CVE-2021-3623 — CVSS 6.1 (medium): A flaw was found in libtpms. The flaw can be triggered by specially-crafted TPM 2 command packets containing illegal values and may lead to…
CVE-2023-1018 — CVSS 5.5 (medium): An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the…