CVE-2021-46792

EPSS 0.12%
Published 09.05.2023 20:15:12
Last modified 28.01.2025 16:15:33
Source psirt@amd.com
Teams watchlist Login
Open Login

Time-of-check Time-of-use (TOCTOU) in the
BIOS2PSP command may allow an attacker with a malicious BIOS to create a race
condition causing the ASP bootloader to perform out-of-bounds SRAM reads upon
an S3 resume event potentially leading to a denial of service.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Amd ≫ Ryzen 5300g Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5300g Version-

Amd ≫ Ryzen 5300ge Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5300ge Version-

Amd ≫ Ryzen 5500 Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5500 Version-

Amd ≫ Ryzen 5600 Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5600 Version-

Amd ≫ Ryzen 5600g Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5600g Version-

Amd ≫ Ryzen 5600ge Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5600ge Version-

Amd ≫ Ryzen 5600x Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5600x Version-

Amd ≫ Ryzen 5700g Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5700g Version-

Amd ≫ Ryzen 5700ge Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5700ge Version-

Amd ≫ Ryzen 5700x Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5700x Version-

Amd ≫ Ryzen 5800 Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5800 Version-

Amd ≫ Ryzen 5800x3d Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5800x3d Version-

Amd ≫ Ryzen 5800x Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5800x Version-

Amd ≫ Ryzen 5900 Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5900 Version-

Amd ≫ Ryzen 5900x Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5900x Version-

Amd ≫ Ryzen 5945wx Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5945wx Version-

Amd ≫ Ryzen 5950x Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5950x Version-

Amd ≫ Ryzen 5955wx Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5955wx Version-

Amd ≫ Ryzen 5965wx Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5965wx Version-

Amd ≫ Ryzen 5975wx Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5975wx Version-

Amd ≫ Ryzen 5995wx Firmware Versioncezannepi-fp6_1.0.0.6

Amd ≫ Ryzen 5995wx Version-

Amd ≫ Ryzen 3100 Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3100 Version-

Amd ≫ Ryzen 3100 Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3100 Version-

Amd ≫ Ryzen 3100 Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3100 Version-

Amd ≫ Ryzen 3300x Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3300x Version-

Amd ≫ Ryzen 3300x Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3300x Version-

Amd ≫ Ryzen 3300x Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3300x Version-

Amd ≫ Ryzen 3500 Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3500 Version-

Amd ≫ Ryzen 3500 Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3500 Version-

Amd ≫ Ryzen 3500 Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3500 Version-

Amd ≫ Ryzen 3500x Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3500x Version-

Amd ≫ Ryzen 3500x Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3500x Version-

Amd ≫ Ryzen 3500x Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3500x Version-

Amd ≫ Ryzen 3600 Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3600 Version-

Amd ≫ Ryzen 3600 Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3600 Version-

Amd ≫ Ryzen 3600 Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3600 Version-

Amd ≫ Ryzen 3600x Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3600x Version-

Amd ≫ Ryzen 3600x Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3600x Version-

Amd ≫ Ryzen 3600x Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3600x Version-

Amd ≫ Ryzen 3600xt Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3600xt Version-

Amd ≫ Ryzen 3600xt Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3600xt Version-

Amd ≫ Ryzen 3600xt Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3600xt Version-

Amd ≫ Ryzen 3800x Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3800x Version-

Amd ≫ Ryzen 3800x Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3800x Version-

Amd ≫ Ryzen 3800x Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3800x Version-

Amd ≫ Ryzen 3800xt Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3800xt Version-

Amd ≫ Ryzen 3800xt Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3800xt Version-

Amd ≫ Ryzen 3800xt Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3800xt Version-

Amd ≫ Ryzen 3900 Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3900 Version-

Amd ≫ Ryzen 3900 Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3900 Version-

Amd ≫ Ryzen 3900 Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3900 Version-

Amd ≫ Ryzen 3900x Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3900x Version-

Amd ≫ Ryzen 3900x Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3900x Version-

Amd ≫ Ryzen 3900x Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3900x Version-

Amd ≫ Ryzen 3900xt Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3900xt Version-

Amd ≫ Ryzen 3900xt Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3900xt Version-

Amd ≫ Ryzen 3900xt Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3900xt Version-

Amd ≫ Ryzen 3950x Firmware Versioncomboam4v2_pi_1.2.0.5

Amd ≫ Ryzen 3950x Version-

Amd ≫ Ryzen 3950x Firmware Versionpicasso_pi-fp5_1.0.0.4

Amd ≫ Ryzen 3950x Version-

Amd ≫ Ryzen 3950x Firmware Versionrenoirpi-fp6_1.0.0.7

Amd ≫ Ryzen 3950x Version-

Amd ≫ Ryzen 1200 (af) Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 1200 (af) Version-

Amd ≫ Ryzen 1200 (af) Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 1200 (af) Version-

Amd ≫ Ryzen 1600 (af) Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 1600 (af) Version-

Amd ≫ Ryzen 1600 (af) Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 1600 (af) Version-

Amd ≫ Ryzen 2200g Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2200g Version-

Amd ≫ Ryzen 2200g Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2200g Version-

Amd ≫ Ryzen 2200ge Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2200ge Version-

Amd ≫ Ryzen 2200ge Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2200ge Version-

Amd ≫ Ryzen 2300x Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2300x Version-

Amd ≫ Ryzen 2300x Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2300x Version-

Amd ≫ Ryzen 2400g Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2400g Version-

Amd ≫ Ryzen 2400g Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2400g Version-

Amd ≫ Ryzen 2400ge Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2400ge Version-

Amd ≫ Ryzen 2400ge Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2400ge Version-

Amd ≫ Ryzen 2500x Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2500x Version-

Amd ≫ Ryzen 2500x Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2500x Version-

Amd ≫ Ryzen 2600 Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2600 Version-

Amd ≫ Ryzen 2600 Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2600 Version-

Amd ≫ Ryzen 2600e Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2600e Version-

Amd ≫ Ryzen 2600e Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2600e Version-

Amd ≫ Ryzen 2600x Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2600x Version-

Amd ≫ Ryzen 2600x Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2600x Version-

Amd ≫ Ryzen 2700 Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2700 Version-

Amd ≫ Ryzen 2700 Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2700 Version-

Amd ≫ Ryzen 2700e Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2700e Version-

Amd ≫ Ryzen 2700e Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2700e Version-

Amd ≫ Ryzen 2700x Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2700x Version-

Amd ≫ Ryzen 2700x Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2700x Version-

Amd ≫ Ryzen 2920x Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2920x Version-

Amd ≫ Ryzen 2920x Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2920x Version-

Amd ≫ Ryzen 2950x Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2950x Version-

Amd ≫ Ryzen 2950x Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2950x Version-

Amd ≫ Ryzen 2970wx Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2970wx Version-

Amd ≫ Ryzen 2970wx Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2970wx Version-

Amd ≫ Ryzen 2990wx Firmware Versionpinnaclepi-am4_1.0.0.7

Amd ≫ Ryzen 2990wx Version-

Amd ≫ Ryzen 2990wx Firmware Versionraven-fp5-am4_1.0.0.9

Amd ≫ Ryzen 2990wx Version-

Amd ≫ Athlon Gold 3150g Firmware Versionpicassopi-fp5_1.0.0.4

Amd ≫ Athlon Gold 3150g Version-

Amd ≫ Athlon Gold 3150ge Firmware Versionpicassopi-fp5_1.0.0.4

Amd ≫ Athlon Gold 3150ge Version-

Amd ≫ Athlon Silver 3050ge Firmware Versionpicassopi-fp5_1.0.0.4

Amd ≫ Athlon Silver 3050ge Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.12%	0.281

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.9	2.2	3.6	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
134c704f-9b21-4f2e-91b3-4a467353bcc0	5.9	2.2	3.6	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition

The product checks the state of a resource before using that resource, but the resource's state can change between the check and the use in a way that invalidates the results of the check. This can cause the product to perform invalid actions when the resource is in an unexpected state.

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4001

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-46792

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-46792

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-46792

EUVD