发布于3月6日3月6日 Members VMware Photon OS: CVE-2024-29039 Severity 8 CVSS (AV:N/AC:H/Au:N/C:C/I:C/A:C) Published 06/28/2024 Created 01/21/2025 Added 01/20/2025 Modified 02/04/2025 Description tpm2 is the source repository for the Trusted Platform Module (TPM2.0) tools. This vulnerability allows attackers to manipulate tpm2_checkquote outputs by altering the TPML_PCR_SELECTION in the PCR input file.As a result, digest values are incorrectly mapped to PCR slots and banks, providing a misleading picture of the TPM state. This issue has been patched in version 5.7. Solution(s) vmware-photon_os_update_tdnf References https://attackerkb.com/topics/cve-2024-29039 CVE - 2024-29039
