CVE-2024-21976
- EPSS 0.04%
- Veröffentlicht 12.11.2024 18:15:19
- Zuletzt bearbeitet 26.08.2025 21:15:35
Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution.
CVE-2024-21981
- EPSS 0.04%
- Veröffentlicht 13.08.2024 17:15:22
- Zuletzt bearbeitet 15.08.2024 18:35:06
Improper key usage control in AMD Secure Processor (ASP) may allow an attacker with local access who has gained arbitrary code execution privilege in ASP to extract ASP cryptographic keys, potentially resulting in loss of confidentiality and integrit...
CVE-2021-26387
- EPSS 0.02%
- Veröffentlicht 13.08.2024 17:15:17
- Zuletzt bearbeitet 30.10.2024 18:35:00
Insufficient access controls in ASP kernel may allow a privileged attacker with access to AMD signing keys and the BIOS menu or UEFI shell to map DRAM regions in protected areas, potentially leading to a loss of platform integrity.
CVE-2017-7262
- EPSS 0.06%
- Veröffentlicht 25.03.2017 00:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The AMD Ryzen processor with AGESA microcode through 2017-01-27 allows local users to cause a denial of service (system hang) via an application that makes a long series of FMA3 instructions, as demonstrated by the Flops test suite.