CVE-2021-3565 log

Severity Low
Remote No
Type Man-in-the-middle
A security issue was found in tpm2-tools before version 5.1.1. tpm2_import used a fixed AES key for the inner wrapper, potentially allowing a man-in-the-middle (MITM) attacker to unwrap the inner portion and reveal the key being imported.
Group Package Affected Fixed Severity Status Ticket
AVG-1986 tpm2-tools 5.1-1 5.1.1-1 Low Fixed
Date Advisory Group Package Severity Type
22 Jun 2021 ASA-202106-55 AVG-1986 tpm2-tools Low man-in-the-middle