Vulnerability Database

309,961

Total vulnerabilities in the database

CVE-2020-26933

Trusted Computing Group (TCG) Trusted Platform Module Library Family 2.0 Library Specification Revisions 1.38 through 1.59 has Incorrect Access Control during a non-orderly TPM shut-down that uses USE_DA_USED. Improper initialization of this shut-down may result in susceptibility to a dictionary attack.

  • Published: Nov 18, 2020
  • Updated: Nov 16, 2025
  • CVE: CVE-2020-26933
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N

CVSS v2:

  • Severity: Low
  • Score: 3.6
  • AV:L/AC:L/Au:N/C:P/I:P/A:N

CWEs:

Software From Fixed in
trustedcomputinggroup / trusted_platform_module 2.0-revision_1.40 2.0-revision_1.40.x
trustedcomputinggroup / trusted_platform_module 2.0-revision_1.59 2.0-revision_1.59.x
trustedcomputinggroup / trusted_platform_module 2.0-revision_1.38 2.0-revision_1.38.x