7.8
CVE-2021-26338
- EPSS 0.31%
- Published 16.11.2021 18:15:07
- Last modified 21.11.2024 05:56:08
- Source psirt@amd.com
- Teams watchlist Login
- Open Login
Improper access controls in System Management Unit (SMU) may allow for an attacker to override performance control tables located in DRAM resulting in a potential lack of system resources.
Data is provided by the National Vulnerability Database (NVD)
Amd ≫ Epyc 7f72 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7f52 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7f32 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7h12 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7742 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7702 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7702p Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7662 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7642 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7552 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7542 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7532 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7502 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7502p Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7452 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7402 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7402p Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7352 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7302 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7302p Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7282 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7272 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7262 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7252 Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7232p Firmware Version < romepi-sp3_1.0.0.c
Amd ≫ Epyc 7763 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7713p Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7713 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7663 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7643 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 75f3 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7543p Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7543 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7513 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7453 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 74f3 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7443p Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7443 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7413 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 73f3 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7343 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7313p Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 7313 Firmware Version < milanpi-sp3_1.0.0.4
Amd ≫ Epyc 72f3 Firmware Version < milanpi-sp3_1.0.0.4
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.31% | 0.539 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-284 Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.