Thomas Eisenbarth

Name of the Vulnerable Software and Affected Versions: Intel TDX Module firmware versions prior to 1.5.06 Description: The issue is related to an improper check for unusual or exceptional conditions in the Intel TDX Module firmware. This may allow a privileged user to potentially enable information disclosure via local access. The vulnerability is also described as being related to incomplete filtering of special elements, which could allow an attacker to gain unauthorized access to protected information. Recommendations: For Intel TDX Module firmware versions prior to 1.5.06, update to version 1.5.06 or later to resolve the issue. As a temporary workaround, consider restricting local access to the Intel TDX Module firmware until a patch is available.

**Name of the Vulnerable Software and Affected Versions** WolfSSL (affected versions not specified) **Description** The issue is related to the generation of the ECDSA nonce k, where a random number r is selected and then reduced modulo n, the order of the elliptic curve. The division used during the reduction estimates a factor q e by dividing the upper two digits of r by the upper digit of n and then decrements q e in a loop until it has the correct size. Observing the number of times q e is decremented through a control-flow revealing side-channel reveals a bias in the most significant bits of k. Depending on the curve, this is either a negligible bias or a significant bias large enough to reconstruct k with lattice reduction methods. For SECP160R1, a bias of 15 bits is found. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AMD CPUs (affected versions not specified) **Description** The issue is related to the implementation of the SEV-SNP (Secure Nested Paging) protective mechanism for virtual machines running on servers with AMD processors, which is associated with data encryption errors. An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** AMD SEV/SEV-ES feature (affected versions not specified) **Description** The issue concerns the AMD SEV/SEV-ES feature, where memory can be rearranged in the guest address space without being detected by the attestation mechanism. This could potentially be exploited by a malicious hypervisor to achieve arbitrary code execution within the guest VM, provided a malicious administrator has access to compromise the server hypervisor. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** STMicroelectronics ST33TPHF2ESPI TPM devices versions prior to 2019-09-12 **Description** The issue is related to a side-channel timing attack that allows attackers to extract the ECDSA private key due to mishandled ECDSA scalar multiplication. This vulnerability is associated with defects in the cryptographic algorithms used in the TPM processor's firmware. An attacker can exploit this issue to recover the value of closed keys stored in the Trusted Platform Module. **Recommendations** For versions prior to 2019-09-12, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Intel(R) PTT versions prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0, and 14.0.10 Intel(R) TXE versions prior to 3.1.70 and 4.0.20 Intel(R) SPS versions prior to SPS E5 04.01.04.305.0, SPS SoC-X 04.00.04.108.0, SPS SoC-A 04.00.04.191.0, SPS E3 04.01.04.086.0, and SPS E3 04.08.04.047.0 **Description** The issue is related to cryptographic timing conditions in the Intel(R) PTT, Intel(R) TXE, and Intel(R) SPS subsystems, which may allow an unauthenticated user to potentially enable information disclosure via network access. This vulnerability is associated with a lack of protection for service data and may allow a remote attacker to access cryptographic keys stored in the Trusted Platform Module (TPM). **Recommendations** For Intel(R) PTT versions prior to 11.8.70, 11.11.70, 11.22.70, 12.0.45, 13.0.0, and 14.0.10, update to the respective fixed versions or later. For Intel(R) TXE versions prior to 3.1.70 and 4.0.20, update to the respective fixed versions or later. For Intel(R) SPS versions prior to SPS E5 04.01.04.305.0, SPS SoC-X 04.00.04.108.0, SPS SoC-A 04.00.04.191.0, SPS E3 04.01.04.086.0, and SPS E3 04.08.04.047.0, update to the respective fixed versions or later. As a temporary workaround, consider restricting access to the Trusted Platform Module (TPM) to minimize the risk of exploitation.