CVE-2020-24455

Summary

Missing initialization of a variable in the TPM2 source may allow a privileged user to potentially enable an escalation of privilege via local access. This affects tpm2-tss before 3.0.1 and before 2.4.3.

Affected Software

VendorProductVersion RangeStatus
n/aTPM2 sourcebefore 3.01, before 2.4.3affected

Weaknesses

  • escalation of privilege

ADP Enrichment

CVE Program Container

Additional References

References