Updates should be provided by vendors of host systems which rely on the RPMB feature as part of their security architecture. Affected product vendors should reach out to the provider of their host processor or Trusted Execution Environment (TEE) software for details on remediation status. Where available, we have listed the status from specific vendors below.
Intel has assigned CVE-2020-12355 for this vulnerability, and details will be made available in advisory INTEL-SA-00391.
Google has assigned CVE-2020-0436 for this vulnerability.
For TEE solutions on MediaTek chipsets, please contact MediaTek directly for additional information and remediation steps.
Samsung has assigned CVE-2020-35551 for this vulnerability, and details will be made available in advisory https://security.samsungmobile.com/securityUpdate.smsb.
Nvidia has assigned CVE-2021-1067 for this vulnerability, and details will be made available in advisory https://nvidia.custhelp.com/app/answers/detail/a_id/5148