CVE-2021-3746

MEDIUM
Published Oct 19, 20214y ago · Modified Jun 17, 20262w ago
6.5 CVSS 3.1
Medium
Find Similar
Published Oct 19, 2021 4y ago
Last Modified Jun 17, 2026 2w ago

Description

A flaw was found in the libtpms code that may cause access beyond the boundary of internal buffers. The vulnerability is triggered by specially-crafted TPM2 command packets that then trigger the issue when the state of the TPM2's volatile state is written. The highest threat from this vulnerability is to system availability. This issue affects libtpms versions before 0.8.5, before 0.7.9 and before 0.6.6.

CVSS Details

Base Score
6.5
Exploitability
2.8
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction Required
Scope Unchanged
Confidentiality None
Integrity None
Availability High

Threat Intelligence

No active exploitation signals — not in CISA KEV and no EPSS score yet.

Exploit & Patch Status
No Known Exploit
Patch Available

Weaknesses 1

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer Memory Safety

Affected Products 6

VendorProductVersionRange
libtpms_projectlibtpms*≥0.6.0  –  <0.6.6
libtpms_projectlibtpms*≥0.7.0  –  <0.7.9
libtpms_projectlibtpms*≥0.8.0  –  <0.8.5
fedoraprojectfedora34any
redhatenterprise_linux8.0any
redhatenterprise_linux8.0any

References 1

  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1998588
    Issue TrackingPatchThird Party Advisory

Remediation

  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=1998588
    Issue TrackingPatchThird Party Advisory