Amd

Ryzen 5 3500x Firmware

16 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2023-20559

  • EPSS 0.26%
  • Published 02.04.2023 21:15:08
  • Last modified 25.02.2025 17:15:11

Insufficient control flow management in AmdCpmGpioInitSmm may allow a privileged attacker to tamper with the SMM handler potentially leading to escalation of privileges.

4.7

CVE-2022-27672

  • EPSS 0.15%
  • Published 01.03.2023 08:15:10
  • Last modified 21.11.2024 06:56:08

When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially resulting in information disclosure.

5.5

CVE-2021-26346

  • EPSS 0.06%
  • Published 11.01.2023 08:15:10
  • Last modified 09.04.2025 16:15:18

Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service.

7.8

CVE-2021-26392

  • EPSS 0.13%
  • Published 09.11.2022 21:15:12
  • Last modified 21.11.2024 05:56:16

Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA.

7.8

CVE-2020-12931

  • EPSS 0.1%
  • Published 09.11.2022 21:15:11
  • Last modified 21.11.2024 05:00:33

Improper parameters handling in the AMD Secure Processor (ASP) kernel may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity.

7.8

CVE-2020-12930

  • EPSS 0.1%
  • Published 09.11.2022 21:15:10
  • Last modified 21.11.2024 05:00:33

Improper parameters handling in AMD Secure Processor (ASP) drivers may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity.