Lucene search

[email protected]CVE-2021-46774

HistoryNov 14, 2023 - 7:15 p.m.

CVE-2021-46774

2023-11-1419:15:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2021-46774

insufficient dram validation

smu

denial of service

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

20.5%

JSON

Insufficient DRAM address validation in System
Management Unit (SMU) may allow an attacker to read/write from/to an invalid
DRAM address, potentially resulting in denial-of-service.

CPENameOperatorVersion
amd:epyc_7001_firmwareamd epyc 7001 firmwareltnaplespi_1.0.0.k
amd:epyc_7251_firmwareamd epyc 7251 firmwareltnaplespi_1.0.0.k
amd:epyc_7261_firmwareamd epyc 7261 firmwareltnaplespi_1.0.0.k
amd:epyc_7281_firmwareamd epyc 7281 firmwareltnaplespi_1.0.0.k
amd:epyc_7301_firmwareamd epyc 7301 firmwareltnaplespi_1.0.0.k
amd:epyc_7351_firmwareamd epyc 7351 firmwareltnaplespi_1.0.0.k
amd:epyc_7351p_firmwareamd epyc 7351p firmwareltnaplespi_1.0.0.k
amd:epyc_7371_firmwareamd epyc 7371 firmwareltnaplespi_1.0.0.k
amd:epyc_7401_firmwareamd epyc 7401 firmwareltnaplespi_1.0.0.k
amd:epyc_7401p_firmwareamd epyc 7401p firmwareltnaplespi_1.0.0.k

CPE	Name	Operator	Version
amd:epyc_7001_firmware	amd epyc 7001 firmware	lt	naplespi_1.0.0.k
amd:epyc_7251_firmware	amd epyc 7251 firmware	lt	naplespi_1.0.0.k
amd:epyc_7261_firmware	amd epyc 7261 firmware	lt	naplespi_1.0.0.k
amd:epyc_7281_firmware	amd epyc 7281 firmware	lt	naplespi_1.0.0.k
amd:epyc_7301_firmware	amd epyc 7301 firmware	lt	naplespi_1.0.0.k
amd:epyc_7351_firmware	amd epyc 7351 firmware	lt	naplespi_1.0.0.k
amd:epyc_7351p_firmware	amd epyc 7351p firmware	lt	naplespi_1.0.0.k
amd:epyc_7371_firmware	amd epyc 7371 firmware	lt	naplespi_1.0.0.k
amd:epyc_7401_firmware	amd epyc 7401 firmware	lt	naplespi_1.0.0.k
amd:epyc_7401p_firmware	amd epyc 7401p firmware	lt	naplespi_1.0.0.k

Rows per page:

1-10 of 1371

References

www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3002

www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002

www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.3 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.001 Low

EPSS

Percentile

20.5%

JSON

Related for CVE-2021-46774

cvelist1 prion1 hp1 amd3 openvas3 nessus2