5.5

CVE-2021-26329

AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provided which may result in a potential loss of resources.

Data is provided by the National Vulnerability Database (NVD)
AmdEpyc 7601 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7601 Version-
AmdEpyc 7551p Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7551p Version-
AmdEpyc 7551 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7551 Version-
AmdEpyc 7501 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7501 Version-
AmdEpyc 7451 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7451 Version-
AmdEpyc 7401 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7401 Version-
AmdEpyc 7371 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7371 Version-
AmdEpyc 7351p Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7351p Version-
AmdEpyc 7351 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7351 Version-
AmdEpyc 7301 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7301 Version-
AmdEpyc 7281 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7281 Version-
AmdEpyc 7261 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7261 Version-
AmdEpyc 7251 Firmware Version < naplespi-sp3_1.0.0.g
   AmdEpyc 7251 Version-
AmdEpyc 7f72 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7f72 Version-
AmdEpyc 7f52 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7f52 Version-
AmdEpyc 7f32 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7f32 Version-
AmdEpyc 7h12 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7h12 Version-
AmdEpyc 7742 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7742 Version-
AmdEpyc 7702 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7702 Version-
AmdEpyc 7702p Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7702p Version-
AmdEpyc 7662 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7662 Version-
AmdEpyc 7642 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7642 Version-
AmdEpyc 7552 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7552 Version-
AmdEpyc 7542 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7542 Version-
AmdEpyc 7532 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7532 Version-
AmdEpyc 7502 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7502 Version-
AmdEpyc 7502p Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7502p Version-
AmdEpyc 7452 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7452 Version-
AmdEpyc 7402 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7402 Version-
AmdEpyc 7402p Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7402p Version-
AmdEpyc 7352 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7352 Version-
AmdEpyc 7302 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7302 Version-
AmdEpyc 7302p Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7302p Version-
AmdEpyc 7282 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7282 Version-
AmdEpyc 7272 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7272 Version-
AmdEpyc 7262 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7262 Version-
AmdEpyc 7252 Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7252 Version-
AmdEpyc 7232p Firmware Version < romepi-sp3_1.0.0.c
   AmdEpyc 7232p Version-
AmdEpyc 7763 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7763 Version-
AmdEpyc 7713p Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7713p Version-
AmdEpyc 7713 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7713 Version-
AmdEpyc 7663 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7663 Version-
AmdEpyc 7643 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7643 Version-
AmdEpyc 75f3 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 75f3 Version-
AmdEpyc 7543p Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7543p Version-
AmdEpyc 7543 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7543 Version-
AmdEpyc 7513 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7513 Version-
AmdEpyc 7453 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7453 Version-
AmdEpyc 74f3 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 74f3 Version-
AmdEpyc 7443p Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7443p Version-
AmdEpyc 7443 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7443 Version-
AmdEpyc 7413 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7413 Version-
AmdEpyc 73f3 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 73f3 Version-
AmdEpyc 7343 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7343 Version-
AmdEpyc 7313p Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7313p Version-
AmdEpyc 7313 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 7313 Version-
AmdEpyc 72f3 Firmware Version < milanpi-sp3_1.0.0.4
   AmdEpyc 72f3 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 0.05% 0.152
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 5.5 1.8 3.6
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:N/I:N/A:P
CWE-130 Improper Handling of Length Parameter Inconsistency

The product parses a formatted message or structure, but it does not handle or incorrectly handles a length field that is inconsistent with the actual length of the associated data.

CWE-190 Integer Overflow or Wraparound

The product performs a calculation that can produce an integer overflow or wraparound when the logic assumes that the resulting value will always be larger than the original value. This occurs when an integer value is incremented to a value that is too large to store in the associated representation. When this occurs, the value may become a very small or negative number.