← back
CVE-2021-3569

CVE-2021-3569

EPSS 0.3%CWE-120
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
03 Jun 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A stack corruption bug was found in libtpms in versions before 0.7.2 and before 0.8.0 while decrypting data using RSA. This flaw could result in a SIGBUS (bad memory access) and termination of swtpm. The highest threat from this vulnerability is to system availability.
Affected products
n/a · libtpms