CVE-2022-23645

Name: CVE-2022-23645
Creator: NVD / NIST
Published: 2022-02-18T21:15:13.09+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

MEDIUMCVSS 5.5/10EPSS 0.40%

Last modified Jun 17, 2026

CVE-2022-23645 is a medium-severity vulnerability rated 5.5/10 on the CVSS scale. swtpm is a libtpms-based TPM emulator with socket, character device, and Linux CUSE interface. Versions prior to 0.5.3, 0.6.2, and 0.7.1 are vulnerable to out-of-bounds read. EPSS estimates a 0.40% chance of exploitation in the next 30 days.

Description

swtpm is a libtpms-based TPM emulator with socket, character device, and Linux CUSE interface. Versions prior to 0.5.3, 0.6.2, and 0.7.1 are vulnerable to out-of-bounds read. A specially crafted header of swtpm's state, where the blobheader's hdrsize indicator has an invalid value, may cause an out-of-bounds access when the byte array representing the state of the TPM is accessed. This will likely crash swtpm or prevent it from starting since the state cannot be understood. Users should upgrade to swtpm v0.5.3, v0.6.2, or v0.7.1 to receive a patch. There are currently no known workarounds.

Metrics

CVSS 3.1

5.5/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Probability

0.40%

32.2th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-125

Affected Software

Vendor	Product	Versions
Swtpm Project	Swtpm	< 0.5.3
Swtpm Project	Swtpm	>= 0.6.0, < 0.6.2
Swtpm Project	Swtpm	0.7.0
Redhat	Enterprise Linux	8.0
Fedoraproject	Fedora	35

References

https://github.com/stefanberger/swtpm/commit/9f740868fc36761de27df3935513bdebf8852d19Patch, Third Party Advisory
https://github.com/stefanberger/swtpm/releases/tag/v0.5.3Release Notes, Third Party Advisory
https://github.com/stefanberger/swtpm/releases/tag/v0.6.2Release Notes, Third Party Advisory
https://github.com/stefanberger/swtpm/releases/tag/v0.7.1Release Notes, Third Party Advisory
https://github.com/stefanberger/swtpm/security/advisories/GHSA-2qgm-8xf4-3hqwPatch, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WL735FW266GO4C2JX4CJBOIOB7R7AY5A/
https://github.com/stefanberger/swtpm/commit/9f740868fc36761de27df3935513bdebf8852d19Patch, Third Party Advisory
https://github.com/stefanberger/swtpm/releases/tag/v0.5.3Release Notes, Third Party Advisory
https://github.com/stefanberger/swtpm/releases/tag/v0.6.2Release Notes, Third Party Advisory
https://github.com/stefanberger/swtpm/releases/tag/v0.7.1Release Notes, Third Party Advisory
https://github.com/stefanberger/swtpm/security/advisories/GHSA-2qgm-8xf4-3hqwPatch, Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/WL735FW266GO4C2JX4CJBOIOB7R7AY5A/

Timeline

Published: Feb 18, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2022-23645?

How severe is CVE-2022-23645?

CVE-2022-23645 has a CVSS score of 5.5/10 (MEDIUM severity). The EPSS model estimates a 0.40% probability of exploitation in the next 30 days.

How do I fix CVE-2022-23645?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2022-23645?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST