CVE-2017-15361 TPM Firmware RSA Key Generation Vulnerability Detection Guide

Key Information CVE ID: CVE-2017-15361 Affected TPM Firmware Versions: - 4.0 - 4.33 - 4.4 - 4.42 - 5.0 - 5.61 - 6.0 - 6.42 - 7.0 - 7.61 - 133.0 - 133.32 - 149.0 - 149.32 Vulnerability Description This vulnerability affects Trusted Platform Module (TPM) systems that may have security flaws in RSA key generation, impacting both Windows and Linux systems. Provided Tools & Scripts Windows Systems: - Nessus Audit File: - PowerShell Script: Linux Systems: - Nessus Audit File: - Bash Script: These tools assist DoD administrators in detecting affected systems within their networks. Related Links Original Research: https://crocs.fi.muni.cz/public/papers/rsa_ccs17 More Information: - https://www.kb.cert.org/vuls/id/307015 - https://www.infineon.com/cms/en/product/promopages/rsa-update/ - https://www.infineon.com/cms/en/product/promopages/rsa-update/rsa-background - https://www.infineon.com/cms/en/product/promopages/tpm-update/ OS Patches & TPM Firmware Updates: - https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV170012 - https://us.answers.acer.com/app/answers/detail/a_id/51137 - http://www.fujitsu.com/global/support/products/software/security/products-f/ifsa-201701e.html - https://support.hp.com/us-en/document/c05792935 着 - https://support.hpe.com/hpsc/doc/public/display?docId=emr_na-hpesbhf03789en_us - https://support.lenovo.com/us/en/product_security/LEN-15552 - https://support.toshiba.com/sscontent?contentId=4015874 - https://sites.google.com/a/chromium.org/dev/chromium-os/tpm_firmware_update Other Affected Devices: - https://www.yubico.com/support/security-advisories/ysa-2017-01/ - https://safenet.gemalto.com/technical-support/security-updates - https://gemalto.service-now.com/csm?id=kb_article&sys_id=19a55bdf4fb907c0873b69d18110c768 Tools to Check if RSA Keys are Affected: - https://github.com/crocs-muni/roca - https://keychest.net/roca - https://keytester.cryptosense.com/ - https://www.tenable.com/plugins/index.php?view=single&id=103864

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2017-15361 TPM Firmware RSA Key Generation Vulnerability Detection Guide

More from this source