Lucene search

[email protected]NVD:CVE-2021-26360

HistoryNov 09, 2022 - 9:15 p.m.

CVE-2021-26360

2022-11-0921:15:11

[email protected]

web.nvd.nist.gov

attacker

soc registers

security configuration

arbitrary code execution

amd secure processor

local access

unauthorized modifications

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

5.1%

JSON

An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers. This could allow potential corruption of AMD secure processor’s encrypted memory contents which may lead to arbitrary code execution in ASP.

Affected configurations

Nvd

Node

amdradeon_pro_w6300mMatch-

amdradeon_pro_w6400Match-

amdradeon_pro_w6500mMatch-

amdradeon_pro_w6600Match-

amdradeon_pro_w6600mMatch-

amdradeon_pro_w6600xMatch-

amdradeon_pro_w6800Match-

amdradeon_pro_w6800xMatch-

amdradeon_pro_w6800x_duoMatch-

amdradeon_pro_w6900xMatch-

amdradeon_rx_6300mMatch-

amdradeon_rx_6400Match-

amdradeon_rx_6500_xtMatch-

amdradeon_rx_6500mMatch-

amdradeon_rx_6600Match-

amdradeon_rx_6600_xtMatch-

amdradeon_rx_6600mMatch-

amdradeon_rx_6600sMatch-

amdradeon_rx_6650_xtMatch-

amdradeon_rx_6650mMatch-

amdradeon_rx_6650m_xtMatch-

amdradeon_rx_6700Match-

amdradeon_rx_6700_xtMatch-

amdradeon_rx_6700mMatch-

amdradeon_rx_6700sMatch-

amdradeon_rx_6750_xtMatch-

amdradeon_rx_6800Match-

amdradeon_rx_6800_xtMatch-

amdradeon_rx_6800mMatch-

amdradeon_rx_6800sMatch-

amdradeon_rx_6850m_xtMatch-

amdradeon_rx_6900_xtMatch-

amdradeon_rx_6950_xtMatch-

AND

amdenterprise_driverRange<22.10.20

amdradeon_pro_softwareRange<22.q2enterprise

amdradeon_softwareRange<22.5.2

VendorProductVersionCPE
amdradeon_pro_w6300m-cpe:2.3:h:amd:radeon_pro_w6300m:-:*:*:*:*:*:*:*
amdradeon_pro_w6400-cpe:2.3:h:amd:radeon_pro_w6400:-:*:*:*:*:*:*:*
amdradeon_pro_w6500m-cpe:2.3:h:amd:radeon_pro_w6500m:-:*:*:*:*:*:*:*
amdradeon_pro_w6600-cpe:2.3:h:amd:radeon_pro_w6600:-:*:*:*:*:*:*:*
amdradeon_pro_w6600m-cpe:2.3:h:amd:radeon_pro_w6600m:-:*:*:*:*:*:*:*
amdradeon_pro_w6600x-cpe:2.3:h:amd:radeon_pro_w6600x:-:*:*:*:*:*:*:*
amdradeon_pro_w6800-cpe:2.3:h:amd:radeon_pro_w6800:-:*:*:*:*:*:*:*
amdradeon_pro_w6800x-cpe:2.3:h:amd:radeon_pro_w6800x:-:*:*:*:*:*:*:*
amdradeon_pro_w6800x_duo-cpe:2.3:h:amd:radeon_pro_w6800x_duo:-:*:*:*:*:*:*:*
amdradeon_pro_w6900x-cpe:2.3:h:amd:radeon_pro_w6900x:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
amd	radeon_pro_w6300m	-	cpe:2.3:h:amd:radeon_pro_w6300m:-:::::::*
amd	radeon_pro_w6400	-	cpe:2.3:h:amd:radeon_pro_w6400:-:::::::*
amd	radeon_pro_w6500m	-	cpe:2.3:h:amd:radeon_pro_w6500m:-:::::::*
amd	radeon_pro_w6600	-	cpe:2.3:h:amd:radeon_pro_w6600:-:::::::*
amd	radeon_pro_w6600m	-	cpe:2.3:h:amd:radeon_pro_w6600m:-:::::::*
amd	radeon_pro_w6600x	-	cpe:2.3:h:amd:radeon_pro_w6600x:-:::::::*
amd	radeon_pro_w6800	-	cpe:2.3:h:amd:radeon_pro_w6800:-:::::::*
amd	radeon_pro_w6800x	-	cpe:2.3:h:amd:radeon_pro_w6800x:-:::::::*
amd	radeon_pro_w6800x_duo	-	cpe:2.3:h:amd:radeon_pro_w6800x_duo:-:::::::*
amd	radeon_pro_w6900x	-	cpe:2.3:h:amd:radeon_pro_w6900x:-:::::::*