Lucene search
+L

889 matches found

osv
osv
added 2018/12/08 4:29 a.m.4 views

UBUNTU-CVE-2018-19962

An issue was discovered in Xen through 4.11.x on AMD x86 platforms, possibly allowing guest OS users to gain host OS privileges because small IOMMU mappings are unsafely combined into larger ones...

7.8CVSS7.2AI score0.00409EPSS
Exploits0References4
bdu_fstec
bdu_fstec
added 2018/07/19 12:0 a.m.4 views

The vulnerability of the AMD component in the Mac OS X operating system allows a hacker to trigger a service failure.

The vulnerability of the AMD component in the Mac OS X operating system is related to the operation of reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure through a specially created application...

6.2CVSS8AI score0.0092EPSS
Exploits0References3Affected Software1
bdu_fstec
bdu_fstec
added 2018/04/04 12:0 a.m.6 views

The vulnerability in the implementation of AMD Secure Processor technology in Ryzen and Ryzen Pro processors allows for the disabling of System Management Mode protection.

The vulnerability of AMD Secure Processor-based Ryzen and Ryzen Pro processors lies in the implementation flaws of security functions. Exploiting this vulnerability allows an attacker with access to the targeted computer and administrative privileges to disable the System Management Mode SMM...

3.5CVSS5.5AI score0.01717EPSS
Exploits0References8
bdu_fstec
bdu_fstec
added 2018/04/04 12:0 a.m.9 views

The vulnerability of the AMD Secure Processor implementation in EPYC Server processors allows for reading from the protected area of the processor.

The vulnerability of the AMD Secure Processor implementation in EPYC Server processors lies in the deficiencies in the implementation of the loader responsible for verifying the functionality of the hardware, as well as for launching the AMD Secure Processor module. Exploiting this vulnerability...

3.5CVSS5.5AI score0.01717EPSS
Exploits0References8
bdu_fstec
bdu_fstec
added 2018/04/04 12:0 a.m.9 views

The vulnerability affects the implementation of the AMD Secure Processor technology in CPUs such as Ryzen, Ryzen Pro, Ryzen Mobile, and EPYC Server. This allows malicious code to be injected into a computer’s BIOS.

The vulnerability of AMD Secure Processor-based processors, such as Ryzen, Ryzen Pro, Ryzen Mobile, and EPYC Server, stems from the absence of a mechanism for detecting damage to flash memory contents. Exploiting this vulnerability allows an attacker who has access to the targeted computer and...

6CVSS5.6AI score0.01811EPSS
Exploits0References8
bdu_fstec
bdu_fstec
added 2018/04/04 12:0 a.m.6 views

The vulnerability affects the implementation of the AMD Secure Processor technology in CPUs such as Ryzen, Ryzen Pro, Ryzen Mobile, and EPYC Server. This allows malicious code to be injected into a computer’s BIOS.

The vulnerability of AMD Secure Processor-based processors, such as Ryzen, Ryzen Pro, Ryzen Mobile, and EPYC Server, stems from the absence of a mechanism for detecting damage to flash memory contents. Exploiting this vulnerability allows an attacker who has access to the targeted computer and...

6CVSS5.6AI score0.01811EPSS
Exploits0References8
mskb
mskb
added 2018/03/29 12:0 a.m.5 views

Unbootable state for AMD devices in Windows 7 SP1 and Windows Server 2008 R2 SP1

Unbootable state for AMD devices in Windows 7 SP1 and Windows Server 2008 R2 SP1 Summary This update resolves the following issue: Microsoft has received reports of some customers on a small subset of older AMD processors getting into an unbootable state after you install January 3, 2018—KB405689...

7.8CVSS7.1AI score0.08915EPSS
Exploits2
cnvd
cnvd
added 2018/03/28 12:0 a.m.8 views

AMD Ryzen and Ryzen Pro Promontory chipset code execution vulnerability

AMD Ryzen and Ryzen Pro are both central processing unit CPU products from AMD in the U.S. Promontory chipset is one of these chipsets. The Promontory chipset used in AMD Ryzen and Ryzen Pro has a security vulnerability that stems from a backdoor in the firmware. An attacker could exploit the...

9.3CVSS7.2AI score0.01811EPSS
Exploits0References1
cnvd
cnvd
added 2018/03/28 12:0 a.m.7 views

Elevation of Privilege Vulnerability in Multiple AMD Products

AMD EPYC Server, etc. are central processing unit CPU products of AMD, USA. A security vulnerability exists in several AMD products. An attacker can exploit the vulnerability to elevate privileges...

9.3CVSS6.9AI score0.01811EPSS
Exploits0References1
cnvd
cnvd
added 2018/03/28 12:0 a.m.6 views

Multiple AMD product design vulnerabilities

AMD EPYC Server, etc. are central processing unit CPU products of AMD, USA. A security vulnerability exists in a number of AMD products that stems from a program failing to adequately enforce the Hardware Validated Boot.An attacker could use this vulnerability to install malicious software that...

9.3CVSS6.8AI score0.01811EPSS
Exploits0References1
cnvd
cnvd
added 2018/03/28 12:0 a.m.6 views

AMD Ryzen and Ryzen Pro Promontory chipset code execution vulnerability (CNVD-2018-07881)

AMD Ryzen and Ryzen Pro are both central processing unit CPU products from AMD in the U.S. Promontory chipset is one of these chipsets. The Promontory chipset used in AMD Ryzen and Ryzen Pro has a security vulnerability that stems from the presence of a backdoor in the ASIC. An attacker could...

9.3CVSS7.2AI score0.01811EPSS
Exploits0References1
attackerkb
attackerkb
added 2018/03/22 2:29 p.m.4 views

CVE-2018-8934

The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in firmware, aka CHIMERA-FW...

9.3CVSS5.5AI score0.01811EPSS
Exploits0References7
attackerkb
attackerkb
added 2018/03/22 2:29 p.m.1 views

CVE-2018-8930

The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3...

9.3CVSS5.5AI score0.01811EPSS
Exploits0References8
redhat
redhat
added 2018/02/09 12:57 p.m.5 views

hw: cpu: speculative execution permission faults handling

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant...

5.6CVSS6.8AI score0.84172EPSS
Exploits3References8
mskb
mskb
added 2018/01/31 12:0 a.m.5 views

January 31, 2018—KB4058258 (OS Build 16299.214)

None None...

6.1AI score
Exploits0
mskb
mskb
added 2018/01/24 12:0 a.m.5 views

Unbootable state for AMD devices in Windows 8.1 and Windows Server 2012 R2

Unbootable state for AMD devices in Windows 8.1 and Windows Server 2012 R2 Summary This update resolves the following issue: Microsoft has received reports of some customers on a small subset of older AMD processors getting into an unbootable state after you install January 3, 2018—KB4056898...

6.9AI score
Exploits0
redhat
redhat
added 2018/01/04 1:6 p.m.6 views

hw: cpu: speculative execution permission faults handling

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of instructions a commonly used performance optimization. There are three primary variants of the issue which differ in the way the speculative execution can be exploited. Variant...

5.6CVSS6.8AI score0.84172EPSS
Exploits3References8
osv
osv
added 2017/02/22 4:59 p.m.3 views

ALPINE-CVE-2016-9377

Xen 4.5.x through 4.7.x on AMD systems without the NRip feature, when emulating instructions that generate software interrupts, allows local HVM guest OS users to cause a denial of service guest crash by leveraging IDT entry miscalculation...

5.5CVSS6.2AI score0.0039EPSS
Exploits0References1
cnvd
cnvd
added 2016/05/22 12:0 a.m.7 views

Apple OS X El Capitan AMD Memory Information Disclosure Vulnerability

Apple OS X El Capitan is an operating system on Apple devices. A security vulnerability in AMD in Apple OS X El Capitan allows attackers to exploit the vulnerability to obtain kernel memory layout information...

4.3CVSS6.5AI score0.00834EPSS
Exploits0References1
osv
osv
added 2016/05/20 10:59 a.m.4 views

CVE-2016-1791

The AMD subsystem in Apple OS X before 10.11.5 allows attackers to obtain sensitive kernel memory-layout information via a crafted app...

3.3CVSS7.3AI score0.00834EPSS
Exploits0References4
Rows per page
Query Builder