CVE-2021-26361
- EPSS 0.13%
- Veröffentlicht 12.05.2022 18:16:53
- Zuletzt bearbeitet 21.11.2024 05:56:12
A malicious or compromised User Application (UApp) or AGESA Boot Loader (ABL) could be used by an attacker to exfiltrate arbitrary memory from the ASP stage 2 bootloader potentially leading to information disclosure.
CVE-2021-26362
- EPSS 0.13%
- Veröffentlicht 12.05.2022 18:16:53
- Zuletzt bearbeitet 21.11.2024 05:56:12
A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call which results in mapping sensitive System Management Network (SMN) registers leading to a loss of integrity and availability.
CVE-2021-26366
- EPSS 0.13%
- Veröffentlicht 12.05.2022 18:16:53
- Zuletzt bearbeitet 21.11.2024 05:56:13
An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity.
CVE-2021-26369
- EPSS 0.14%
- Veröffentlicht 12.05.2022 18:16:53
- Zuletzt bearbeitet 21.11.2024 05:56:13
A malicious or compromised UApp or ABL may be used by an attacker to send a malformed system call to the bootloader, resulting in out-of-bounds memory accesses.
CVE-2021-26339
- EPSS 0.09%
- Veröffentlicht 11.05.2022 17:15:08
- Zuletzt bearbeitet 21.11.2024 05:56:08
A bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM, to trigger a CPU core hang resulting in a potential denial of service. AMD believes the specific code includes a specific x86 instruction sequence t...
CVE-2021-26336
- EPSS 0.13%
- Veröffentlicht 16.11.2021 19:15:08
- Zuletzt bearbeitet 21.11.2024 05:56:08
Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components.