CVE-2018-6622 — HIGH (7.1) — White Hats Nepal

Vulnerability Description

An issue was discovered that affects all producers of BIOS firmware who make a certain realistic interpretation of an obscure portion of the Trusted Computing Group (TCG) Trusted Platform Module (TPM) 2.0 specification. An abnormal case is not handled properly by this firmware while S3 sleep and can clear TPM 2.0. It allows local users to overwrite static PCRs of TPM and neutralize the security features of it, such as seal/unseal and remote attestation.

CVSS Score

7.1

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Trustedcomputinggroup	Trusted Platform Module	2.0

References

http://www.securityfocus.com/bid/105203Third Party AdvisoryVDB Entry
https://www.usenix.org/conference/usenixsecurity18/presentation/hanThird Party Advisory
http://www.securityfocus.com/bid/105203Third Party AdvisoryVDB Entry
https://www.usenix.org/conference/usenixsecurity18/presentation/hanThird Party Advisory

FAQ

What is CVE-2018-6622?

CVE-2018-6622 is a vulnerability with a CVSS score of 7.1 (HIGH). An issue was discovered that affects all producers of BIOS firmware who make a certain realistic interpretation of an obscure portion of the Trusted Computing Group (TCG) Trusted Platform Module (TPM)...

How severe is CVE-2018-6622?

CVE-2018-6622 has been rated HIGH with a CVSS base score of 7.1/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-6622?

Check the references section above for vendor advisories and patch information. Affected products include: Trustedcomputinggroup Trusted Platform Module.