CVE-2026-21444 MEDIUM

CVE-2026-21444: libtpms returns wrong initialization vector when certain symmetric ciphers are used

Vendor Stefanberger
Product libtpms
Weakness CWE-327 · Broken crypto
Published January 2, 2026
Last update January 5, 2026

CVSS base score

5.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality High
Integrity None

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

What the vulnerability does

01Description

libtpms, a library that provides software emulation of a Trusted Platform Module, has a flaw in versions 0.10.0 and 0.10.1. The commonly used integration of libtpms with OpenSSL 3.x contained a vulnerability related to the returned IV (initialization vector) when certain symmetric ciphers were used. Instead of returning the last IV it returned the initial IV to the caller, thus weakening the subsequent encryption and decryption steps. The highest threat from this vulnerability is to data confidentiality. Version 0.10.2 fixes the issue. No known workarounds are available.

Key dates

02Disclosure timeline

January 2, 2026 CVE published
January 5, 2026 Record updated