CVE-2021-46756

EPSS 0.12%
Published 09.05.2023 20:15:12
Last modified 28.01.2025 16:15:31
Source psirt@amd.com
Teams watchlist Login
Open Login

Insufficient validation of inputs in
SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an
attacker with a malicious Uapp or ABL to send malformed or invalid syscall to
the bootloader resulting in a potential denial of service and loss of
integrity.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Amd ≫ Epyc 72f3 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 72f3 Version-

Amd ≫ Epyc 7313 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7313 Version-

Amd ≫ Epyc 7313p Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7313p Version-

Amd ≫ Epyc 7343 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7343 Version-

Amd ≫ Epyc 7373x Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7373x Version-

Amd ≫ Epyc 73f3 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 73f3 Version-

Amd ≫ Epyc 7413 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7413 Version-

Amd ≫ Epyc 7443 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7443 Version-

Amd ≫ Epyc 7443p Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7443p Version-

Amd ≫ Epyc 7453 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7453 Version-

Amd ≫ Epyc 7473x Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7473x Version-

Amd ≫ Epyc 74f3 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 74f3 Version-

Amd ≫ Epyc 7513 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7513 Version-

Amd ≫ Epyc 7543 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7543 Version-

Amd ≫ Epyc 7543p Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7543p Version-

Amd ≫ Epyc 7573x Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7573x Version-

Amd ≫ Epyc 75f3 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 75f3 Version-

Amd ≫ Epyc 7643 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7643 Version-

Amd ≫ Epyc 7663 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7663 Version-

Amd ≫ Epyc 7713 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7713 Version-

Amd ≫ Epyc 7713p Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7713p Version-

Amd ≫ Epyc 7763 Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7763 Version-

Amd ≫ Epyc 7773x Firmware Versionmilanpi_1.0.0.9

Amd ≫ Epyc 7773x Version-

Amd ≫ Epyc 7232p Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7232p Version-

Amd ≫ Epyc 7252 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7252 Version-

Amd ≫ Epyc 7262 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7262 Version-

Amd ≫ Epyc 7272 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7272 Version-

Amd ≫ Epyc 7282 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7282 Version-

Amd ≫ Epyc 7302 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7302 Version-

Amd ≫ Epyc 7302p Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7302p Version-

Amd ≫ Epyc 7352 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7352 Version-

Amd ≫ Epyc 7402 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7402 Version-

Amd ≫ Epyc 7402p Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7402p Version-

Amd ≫ Epyc 7452 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7452 Version-

Amd ≫ Epyc 7502 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7502 Version-

Amd ≫ Epyc 7502p Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7502p Version-

Amd ≫ Epyc 7532 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7532 Version-

Amd ≫ Epyc 7542 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7542 Version-

Amd ≫ Epyc 7552 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7552 Version-

Amd ≫ Epyc 7642 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7642 Version-

Amd ≫ Epyc 7662 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7662 Version-

Amd ≫ Epyc 7702 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7702 Version-

Amd ≫ Epyc 7702p Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7702p Version-

Amd ≫ Epyc 7742 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7742 Version-

Amd ≫ Epyc 7f32 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7f32 Version-

Amd ≫ Epyc 7f52 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7f52 Version-

Amd ≫ Epyc 7f72 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7f72 Version-

Amd ≫ Epyc 7h12 Firmware Versionromepi_1.0.0.e

Amd ≫ Epyc 7h12 Version-

Amd ≫ Epyc 7251 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7251 Version-

Amd ≫ Epyc 7261 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7261 Version-

Amd ≫ Epyc 7281 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7281 Version-

Amd ≫ Epyc 7301 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7301 Version-

Amd ≫ Epyc 7351 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7351 Version-

Amd ≫ Epyc 7351p Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7351p Version-

Amd ≫ Epyc 7371 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7371 Version-

Amd ≫ Epyc 7401 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7401 Version-

Amd ≫ Epyc 7401p Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7401p Version-

Amd ≫ Epyc 7451 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7451 Version-

Amd ≫ Epyc 7501 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7501 Version-

Amd ≫ Epyc 7551 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7551 Version-

Amd ≫ Epyc 7551p Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7551p Version-

Amd ≫ Epyc 7571 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7571 Version-

Amd ≫ Epyc 7601 Firmware Versionnaplespi_1.0.0.j

Amd ≫ Epyc 7601 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.12%	0.27

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	9.1	3.9	5.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.1	3.9	5.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3001

Vendor Advisory

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4001

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-46756

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-46756

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-46756

EUVD