9.1

CVE-2021-46756

Insufficient validation of inputs in
SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an
attacker with a malicious Uapp or ABL to send malformed or invalid syscall to
the bootloader resulting in a potential denial of service and loss of
integrity.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
AmdEpyc 72f3 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 72f3 Version-
AmdEpyc 7313 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7313 Version-
AmdEpyc 7313p Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7313p Version-
AmdEpyc 7343 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7343 Version-
AmdEpyc 7373x Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7373x Version-
AmdEpyc 73f3 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 73f3 Version-
AmdEpyc 7413 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7413 Version-
AmdEpyc 7443 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7443 Version-
AmdEpyc 7443p Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7443p Version-
AmdEpyc 7453 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7453 Version-
AmdEpyc 7473x Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7473x Version-
AmdEpyc 74f3 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 74f3 Version-
AmdEpyc 7513 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7513 Version-
AmdEpyc 7543 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7543 Version-
AmdEpyc 7543p Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7543p Version-
AmdEpyc 7573x Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7573x Version-
AmdEpyc 75f3 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 75f3 Version-
AmdEpyc 7643 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7643 Version-
AmdEpyc 7663 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7663 Version-
AmdEpyc 7713 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7713 Version-
AmdEpyc 7713p Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7713p Version-
AmdEpyc 7763 Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7763 Version-
AmdEpyc 7773x Firmware Versionmilanpi_1.0.0.9
   AmdEpyc 7773x Version-
AmdEpyc 7232p Firmware Versionromepi_1.0.0.e
   AmdEpyc 7232p Version-
AmdEpyc 7252 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7252 Version-
AmdEpyc 7262 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7262 Version-
AmdEpyc 7272 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7272 Version-
AmdEpyc 7282 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7282 Version-
AmdEpyc 7302 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7302 Version-
AmdEpyc 7302p Firmware Versionromepi_1.0.0.e
   AmdEpyc 7302p Version-
AmdEpyc 7352 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7352 Version-
AmdEpyc 7402 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7402 Version-
AmdEpyc 7402p Firmware Versionromepi_1.0.0.e
   AmdEpyc 7402p Version-
AmdEpyc 7452 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7452 Version-
AmdEpyc 7502 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7502 Version-
AmdEpyc 7502p Firmware Versionromepi_1.0.0.e
   AmdEpyc 7502p Version-
AmdEpyc 7532 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7532 Version-
AmdEpyc 7542 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7542 Version-
AmdEpyc 7552 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7552 Version-
AmdEpyc 7642 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7642 Version-
AmdEpyc 7662 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7662 Version-
AmdEpyc 7702 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7702 Version-
AmdEpyc 7702p Firmware Versionromepi_1.0.0.e
   AmdEpyc 7702p Version-
AmdEpyc 7742 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7742 Version-
AmdEpyc 7f32 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7f32 Version-
AmdEpyc 7f52 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7f52 Version-
AmdEpyc 7f72 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7f72 Version-
AmdEpyc 7h12 Firmware Versionromepi_1.0.0.e
   AmdEpyc 7h12 Version-
AmdEpyc 7251 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7251 Version-
AmdEpyc 7261 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7261 Version-
AmdEpyc 7281 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7281 Version-
AmdEpyc 7301 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7301 Version-
AmdEpyc 7351 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7351 Version-
AmdEpyc 7351p Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7351p Version-
AmdEpyc 7371 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7371 Version-
AmdEpyc 7401 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7401 Version-
AmdEpyc 7401p Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7401p Version-
AmdEpyc 7451 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7451 Version-
AmdEpyc 7501 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7501 Version-
AmdEpyc 7551 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7551 Version-
AmdEpyc 7551p Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7551p Version-
AmdEpyc 7571 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7571 Version-
AmdEpyc 7601 Firmware Versionnaplespi_1.0.0.j
   AmdEpyc 7601 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.12% 0.27
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.1 3.9 5.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0 9.1 3.9 5.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.