Amd

Ryzen Pro 3900 Firmware

6 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2023-20563

  • EPSS 0.13%
  • Published 14.11.2023 19:15:15
  • Last modified 21.11.2024 07:41:07

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.

7.8

CVE-2023-20565

  • EPSS 0.13%
  • Published 14.11.2023 19:15:15
  • Last modified 21.11.2024 07:41:07

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.

8.1

CVE-2023-20571

  • EPSS 0.39%
  • Published 14.11.2023 19:15:15
  • Last modified 21.11.2024 07:41:09

A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.

5.5

CVE-2021-26346

  • EPSS 0.06%
  • Published 11.01.2023 08:15:10
  • Last modified 09.04.2025 16:15:18

Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service.

7.5

CVE-2020-12965

  • EPSS 0.82%
  • Published 04.02.2022 23:15:10
  • Last modified 21.11.2024 05:00:35

When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage.

5.5

CVE-2021-26337

  • EPSS 0.13%
  • Published 16.11.2021 19:15:08
  • Last modified 21.11.2024 05:56:08

Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests.