Sébastien Dudek 📡🔓 Great discussion on our community around CVE-2026-0714: TPM-sniffing LUKS keys on an embedded device via SPI bus. First documented attack using TPM2_NV_Read instead of Unseal. Join the thread 👇
https://community.penthertz.com/t/cve-2026-0714-tpm-sniffing-luks-keys-on-an-embedded-device/12
https://community.penthertz.com/t/cve-2026-0714-tpm-sniffing-luks-keys-on-an-embedded-device/12
[CVE-2026-0714] TPM-sniffing LUKS Keys on an Embedded Device
Interesting blog post following the problem found on BitLocker but this time on a Linux device using the TPM: [CVE-2026-0714] TPM-sniffing LUKS Keys on an Embedded Device Here is a good example, that like Windows systems (link 1, link2, link3), Linux devices using TPM can also be vulnerable to TPM sniffing attacks through SPI (No way!): (source: [CVE-2026-0714] TPM-sniffing LUKS Keys on an Embedded Device ) Compared to Windows BitLocker that uses command 0x00000158 for TPM2_Unseal,LUKS on ...