KLA11850
Microsoft Advisory for Microsoft Device
Updated: 07/21/2020
Detect date
?
10/10/2017
Severity
?
Warning
Description

This advisory addresses CVE-2017-15361, also referred to as “Return of Coppersmith’s Attack” (ROCA).

A security vulnerability exists in certain Trusted Platform Module (TPM) chipsets. The vulnerability weakens key strength. It is important to note that this is a firmware vulnerability, and not a vulnerability in the operating system or a specific application. After you have installed software and/or firmware updates, you will need to re-enroll in any security services you are running to remediate those services. For more details contact the TPM manufacturer – https://www.infineon.com/TPM-update.

Affected products

Windows 10
Windows 8.1
Windows 7
Windows RT
Windows Server 2012
Windows Server 2016
Microsoft Surface Studio
Microsoft Surface Pro 4

Solution

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Original advisories

ADV170012

Related products
Microsoft Windows Server
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows 10
Microsoft Surface
KB list

4023490
4023489

Microsoft official advisories
Microsoft Security Update Guide