An out-of-bounds read vulnerability exists in TPM2.0's Module Library allowing a 2-byte read past the end of a TPM2.0 command in the CryptParameterDecryption routine. An attacker who can successfully exploit this vulnerability can read or access sensitive data stored in the TPM.
For more information on this vulnerability please visit: https://nvd.nist.gov/vuln/detail/CVE-2023-1018
CVSS3 : 5.5
Classic Console IM7200