Update Availability/Remediation
Updates should be provided by vendors of host systems which rely on the RPMB feature as part of their security architecture. Affected product vendors should reach out to the provider of their host processor or Trusted Execution Environment (TEE) software for details on remediation status. Where available, we have listed the status from specific vendors below.
Intel
Intel has assigned CVE-2020-12355 for this vulnerability, and details will be made available in advisory INTEL-SA-00391.
Google
Google has assigned CVE-2020-0436 for this vulnerability.
MediaTek
For TEE solutions on MediaTek chipsets, please contact MediaTek directly for additional information and remediation steps.
Samsung Mobile
Samsung has assigned CVE-2020-35551 for this vulnerability, and details will be made available in advisory https://security.samsungmobile.com/securityUpdate.smsb.
Nvidia
Nvidia has assigned CVE-2021-1067 for this vulnerability, and details will be made available in advisory https://nvidia.custhelp.com/app/answers/detail/a_id/5148