The Infineon RSA library 1.02.013 in Infineon Trusted Platform Module (TPM) firmware, such as versions before 0000000000000422 - 4.34, before 000000000000062b - 6.43, and before 0000000000008521 - 133.33, mishandles RSA key generation, which makes it easier for attackers to defeat various cryptographic protection mechanisms via targeted attacks, aka ROCA. Examples of affected technologies include BitLocker with TPM 1.2, YubiKey 4 (before 4.3.5) PGP key generation, and the Cached User Data encryption feature in Chrome OS.
CVE-2017-15361
Score 5.9 from GitHub Security Advisory published 2022-05-13. NVD baseline CVSS 5.9; sources differ by 0.0.
- Lower severity and no public exploit yet
No vendor fix yet — apply a workaround or compensating control (WAF / firewall / segmentation) and watch for a patch.
- CVSS v3
- 5.9
- EG Score
- 5.9(medium)
- EPSS
- 95.0%
- KEV
- Not listed
Published
October 16, 2017
Last Modified
May 13, 2026
References (44)
- cve@mitrehttp://support.lenovo.com/us/en/product_security/LEN-15552
- cve@mitrehttp://www.securityfocus.com/bid/101484
- cve@mitrehttps://arstechnica.com/information-technology/2017/10/crypto-failure-cripples-millions-of-high-security-keys-750k-estonian-ids/
- cve@mitrehttps://blog.cr.yp.to/20171105-infineon.html
- cve@mitrehttps://cert-portal.siemens.com/productcert/pdf/ssa-470231.pdf
- cve@mitrehttps://crocs.fi.muni.cz/public/papers/rsa_ccs17
- cve@mitrehttps://dan.enigmabridge.com/roca-vulnerability-impact-on-gemalto-idprime-net-smart-cards/
- cve@mitrehttps://github.com/crocs-muni/roca
- cve@mitrehttps://github.com/iadgov/Detect-CVE-2017-15361-TPM
- cve@mitrehttps://ics-cert.us-cert.gov/advisories/ICSA-18-058-01
- cve@mitrehttps://keychest.net/roca
- cve@mitrehttps://monitor.certipath.com/rsatest
- cve@mitrehttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/ADV170012
- cve@mitrehttps://security.netapp.com/advisory/ntap-20171024-0001/
- cve@mitrehttps://sites.google.com/a/chromium.org/dev/chromium-os/tpm_firmware_update
Data Freshness Timeline
(refreshed 9× in last 7d / 36× in last 30d)
Each row is a source pipeline that fetched or updated this CVE on that date, with what changed. For example, "NVD update" means NVD published or revised its analysis for this CVE; "MITRE cvelistV5" means we ingested or refreshed it from the CNA feed. Most recent first.
- 2026-07-07 13:42 UTCEPSS rescore
- 2026-07-06 16:24 UTCEPSS rescore
- 2026-07-06 02:20 UTCEPSS rescore
- 2026-07-05 02:27 UTCEPSS rescore
- 2026-07-04 06:28 UTCEPSS rescore
- 2026-07-01 15:02 UTCEPSS rescore
- 2026-07-01 15:02 UTCEPSS rescore
- 2026-06-30 23:19 UTCEPSS rescore
- 2026-06-30 23:19 UTCEPSS rescore
- 2026-06-29 14:03 UTCEPSS rescore
- 2026-06-28 14:04 UTCEPSS rescore
- 2026-06-28 04:53 UTCEPSS rescore
- 2026-06-27 03:05 UTCEPSS rescore
- 2026-06-25 13:47 UTCEPSS rescore
- 2026-06-25 13:47 UTCEPSS rescore
- 2026-06-24 14:02 UTCEPSS rescore
- 2026-06-23 21:30 UTCEPSS rescore
- 2026-06-22 14:23 UTCEPSS rescore
- 2026-06-22 14:23 UTCEPSS rescore
- 2026-06-21 14:54 UTCEPSS rescore
- 2026-06-21 14:54 UTCEPSS rescore
- 2026-06-21 01:57 UTCEPSS rescore
- 2026-06-21 01:57 UTCEPSS rescore
- 2026-06-19 19:23 UTCEPSS rescore
- 2026-06-19 19:23 UTCEPSS rescore
Show 40 moreShow fewer
- 2026-06-18 17:50 UTCEPSS rescore
- 2026-06-17 17:50 UTCEPSS rescore
- 2026-06-16 17:50 UTCEPSS rescore
- 2026-06-15 17:45 UTCEPSS rescore
- 2026-06-13 22:57 UTCEPSS rescore
- 2026-06-12 23:09 UTCEPSS rescore
- 2026-06-11 13:57 UTCEPSS rescore
- 2026-06-10 22:15 UTCEPSS rescore
- 2026-06-08 14:14 UTCEPSS rescore
- 2026-06-07 15:22 UTCEPSS rescore
- 2026-06-07 15:22 UTCEPSS rescore
- 2026-06-06 13:45 UTCEPSS rescore
- 2026-06-06 13:45 UTCEPSS rescore
- 2026-06-05 22:44 UTCEPSS rescore
- 2026-06-05 06:08 UTCEPSS rescore
- 2026-06-05 06:08 UTCEPSS rescore
- 2026-06-04 13:10 UTCEPSS rescore
- 2026-06-04 13:10 UTCEPSS rescore
- 2026-06-02 20:11 UTCEPSS rescore
- 2026-06-02 20:11 UTCEPSS rescore
- 2026-06-01 13:49 UTCEPSS rescore
- 2026-06-01 13:49 UTCEPSS rescore
- 2026-05-31 00:14 UTCEPSS rescore
- 2026-05-29 13:41 UTCEPSS rescore
- 2026-05-28 13:42 UTCEPSS rescore
- 2026-05-28 13:42 UTCEPSS rescore
- 2026-05-27 13:38 UTCEPSS rescore
- 2026-05-27 13:38 UTCEPSS rescore
- 2026-05-26 13:42 UTCEPSS rescore
- 2026-05-26 13:42 UTCEPSS rescore
- 2026-05-26 07:17 UTCEPSS rescore
- 2026-05-26 07:17 UTCEPSS rescore
- 2026-05-22 08:58 UTCEG score recompute
- 2026-05-22 08:58 UTCGHSA enrichment
- 2026-05-20 22:37 UTCEPSS rescore
- 2026-05-20 22:37 UTCEPSS rescore
- 2026-05-20 11:21 UTCEPSS rescore
- 2026-05-20 11:21 UTCEPSS rescore
- 2026-05-18 21:30 UTCEPSS rescore
- 2026-05-18 21:30 UTCEPSS rescore
Publicly available exploits
(4 references)Working exploit code is in the public domain (4 GitHub PoCs). Defenders should treat patch urgency accordingly — public PoCs typically lead to mass-exploitation within 24-72 hours.
- GitHub PoC0xxon/zeek-plugin-rocaFirst seen Oct 25, 2017
Bro plugin to check if certificates are affected by CVE-2017-15361
Open source ↗ - GitHub PoCnsacyber/Detect-CVE-2017-15361-TPMFirst seen Oct 19, 2017
Detects Windows and Linux systems with enabled Trusted Platform Modules (TPM) vulnerable to CVE-2017-15361. #nsacyber
Open source ↗ - GitHub PoCtitanous/rocacheckFirst seen Oct 17, 2017
Go package that checks if RSA keys are vulnerable to ROCA / CVE-2017-15361
Open source ↗ - GitHub PoClva/Infineon-CVE-2017-15361First seen Oct 17, 2017
Simple PowerShell script to check whether a computer is using an Infineon TPM chip that is vulnerable to CVE-2017-15361.
Open source ↗
Frequently asked(5)
What is CVE-2017-15361?
When was CVE-2017-15361 disclosed?
Is CVE-2017-15361 actively exploited?
What is the CVSS score of CVE-2017-15361?
How do I remediate CVE-2017-15361?
Dependency Blast Radius
Explore the affected products and dependency analysis for CVE-2017-15361
Is Your Infrastructure Affected by CVE-2017-15361?
EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.