A potential security vulnerability has been found in some Infineon TPM (Trusted Platform Module) chips used in Toshiba notebook products.
TPM chips are used for security processes such as controlling encryption keys. These devices are embedded inside Personal Computers and used by Security solution programs.
Infineon is preparing TPM firmware updates to fix this vulnerability. We will release these updates suitable for Toshiba systems as soon as they are available. We recommend that you check immediately if your system is potentially affected (see below). If so, we recommend you implement point 5 ‘Immediate Temporary Measure’ below as a workaround until these TPM firmware updates are ready.
TPM is used for data encryption, creating a Public Key which is used alongside a Private Key. If the Public Key is accessed, there is a risk that the Private Key could potentially be identified.
|Tecra A40-C||Portégé A30-C||Satellite Pro A30-C|
|Tecra A40-D||Portégé A30t-C||Satellite Pro A30t-C|
|Tecra A50-A||Portégé A30-D||Satellite Pro A30-D|
|Tecra A50-C||Portégé R30-A||Satellite Pro A40-C|
|Tecra A50-D||Portégé X20W-D||Satellite Pro A40-D|
|Tecra C50-B||Portégé X30-D||Satellite Pro A50-A|
|Tecra C50-C||Portégé Z10t-A||Satellite Pro A50-C|
|Tecra W50-A||Portégé Z20t-B||Satellite Pro A50-D|
|Tecra X40-D||Portégé Z20t-C||Satellite Pro R40-C|
|Tecra Z40-A||Portégé Z30-A||Satellite Pro R50-B|
|Tecra Z40t-A||Portégé Z30t-A||Satellite Pro R50-C|
|Tecra Z40-B||Portégé Z30-B||Satellite Pro R50-D|
|Tecra Z40t-B||Portégé Z30t-B|
|Tecra Z40-C||Portégé Z30-C||Satellite Z30-C|
(b) Check ‘Manufacturer Name’: if it is ‘IFX’, then the system uses an Infineon TPM module and is potentially affected. If so, please proceed to step (c).
(c) Check ‘Specification Version’: if it is ‘v1.20’ or ‘v2.0’ your laptop is potentially affected. If so, please proceed to step (d).
(d) Check ‘Manufacturer Version’ against the below table:
|TPM Version||Manufacturer Version||Potentially Affected|
|Version 2.0||5.xx||Below 5.62|
|Version 1.2||4.4x||Below 4.43|
|Version 1.2||4.3x||Below 4.34|
|Version 1.2||Under 3.x||Not affected|
(e) If your laptop falls under the category ‘Potentially Affected’, please apply the Immediate Temporary Measure in point 5 below.
|OS||OS Version||Security Update to apply||OS Build with Security Update already applied|
|Windows 10||1703||KB4038788||15063.608 or higher|
|Windows 10||1607||KB4038782||14393.1715 or higher|
|Windows 10||1511||KB4038783||10586.1106 or higher|