SSA-628843 — Vulnetix

SSA-628843 PUBLISHED CVSS 6.599999904632568 MEDIUM

TCG TPM2.0 Reference implementation's CryptHmacSign helper function is vulnerable to Out-of-Bounds read due to the lack of validation the signature scheme with the signature key's algorithm. See Errata Revision 1.83 and advisory TCGVRT0009 for TCG standard TPM2.0

Risk Scores

CVSS 3.1

6.599999904632568

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:N/A:H

Affected Products

Vendor	Product	Versions
Siemens	SIMATIC IPC PX-39A PRO
Siemens	SIMATIC Field PG M5
Siemens	SIMATIC IPC BX-39A
Siemens	SIMATIC IPC277E
Siemens	SIMATIC CN 4100
Siemens	SIMATIC IPC BX-32A
Siemens	SIMATIC IPC MD-57A
Siemens	SIMATIC IPC847E
Siemens	SIPLUS IPC427E
Siemens	SIMATIC IPC677E
Siemens	SIMATIC IPC RW-528A
Siemens	SIMATIC IPC477E
Siemens	SIMATIC IPC BX-56A
Siemens	SIMATIC Field PG M6
Siemens	SIMATIC IPC647E
Siemens	SIMATIC ITP1000
Siemens	SIMATIC IPC RW-548A
Siemens	SIMATIC IPC477E PRO
Siemens	SIMATIC IPC627E
Siemens	SIMATIC IPC PX-39A

…and 4 more

Exploit Intelligence

Guardian.cs (github-poc)

Timeline

Apr 14, 2026 CVE Published

References

Open in Interactive Console →