Lucene search

Ryzen 3 Pro 3300u Firmware Security Vulnerabilities

cve

CVE-2021-26339

A bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM, to trigger a CPU core hang resulting in a potential denial of service. AMD believes the specific code includes a specific x86 instruction sequence that would not be generated by compilers.

5.5CVSS

5.9AI Score

0.0004EPSS

2022-05-11 05:15 PM

115

cve

CVE-2021-26341

Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.

6.5CVSS

7.2AI Score

0.0004EPSS

2022-03-11 06:15 PM

175

cve

CVE-2021-26346

Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service.

5.5CVSS

6AI Score

0.0004EPSS

2023-01-11 08:15 AM

cve

CVE-2021-26401

LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.

5.6CVSS

6.5AI Score

0.975EPSS

2022-03-11 06:15 PM

300

cve

CVE-2022-27672

When SMT is enabled, certain AMD processors may speculatively execute instructions using a targetfrom the sibling thread after an SMT mode switch potentially resulting in information disclosure.

4.7CVSS

6.2AI Score

0.0004EPSS

2023-03-01 08:15 AM

138