CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an invalid DRAM address to SRAM, potentially resulting in data corruption or denial of service...

6CVSS5.8AI score0.00145EPSS

Exploits0References1

NVD•added 2024/08/13 5:15 p.m.•12 views

CVE-2023-20510

An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an invalid DRAM address to SRAM, potentially resulting in data corruption or denial of service...

6CVSS0.00145EPSS

Exploits0References1

NVD•added 2024/08/13 5:15 p.m.•9 views

CVE-2023-20509

An insufficient DRAM address validation in PMFW may allow a privileged attacker to perform a DMA read from an invalid DRAM address to SRAM, potentially resulting in loss of data integrity...

5.2CVSS0.00145EPSS

Exploits0References1

Vulnrichment•added 2024/08/13 4:52 p.m.•16 views

CVE-2023-20510

An insufficient DRAM address validation in PMFW may allow a privileged attacker to read from an invalid DRAM address to SRAM, potentially resulting in data corruption or denial of service...

4.7CVSS6.9AI score0.00145EPSS

Exploits0References1

Cvelist•added 2024/08/13 4:52 p.m.•21 views

CVE-2023-20509

An insufficient DRAM address validation in PMFW may allow a privileged attacker to perform a DMA read from an invalid DRAM address to SRAM, potentially resulting in loss of data integrity...

5.2CVSS0.00145EPSS

Exploits0References1

CVE•added 2024/08/13 4:52 p.m.•50 views

CVE-2023-20509

CVE-2023-20509 describes an insufficient DRAM address validation in PMFW that could allow a local privileged attacker to perform a DMA read from an invalid DRAM address to SRAM, potentially leading to data integrity loss. Affected component is PMFW (PM firmware); root cause is address validation ...

5.2CVSS6.9AI score0.00145EPSS

Exploits0References1

Positive Technologies•added 2024/08/13 12:0 a.m.•6 views

PT-2024-11947 · Pmfw · Pmfw

Name of the Vulnerable Software and Affected Versions: PMFW affected versions not specified Description: The issue is related to an insufficient DRAM address validation in PMFW, which may allow a privileged attacker to perform a DMA read from an invalid DRAM address to SRAM. This could potentiall...

5.2CVSS6.6AI score0.00145EPSS

Exploits0References6

Tenable Nessus•added 2023/12/07 12:0 a.m.•50 views

SUSE SLES15 Security Update : kernel-firmware (SUSE-SU-2023:4665-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4665-1 advisory. Update AMD ucode to 20231030 bsc1215831: - CVE-2022-23820: Failure to validate the AMD SMM communication buffer may allow an attack...

9.8CVSS7.3AI score0.01018EPSS

Exploits0References25

OSV•added 2023/11/14 7:15 p.m.•3 views

CVE-2021-46774

Insufficient DRAM address validation in System Management Unit SMU may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service...

7.5CVSS5.8AI score

Exploits0References3

NVD•added 2023/11/14 7:15 p.m.•16 views

CVE-2021-46774

Insufficient DRAM address validation in System Management Unit SMU may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service...

7.5CVSS0.00508EPSS

Exploits0References3

CVE•added 2023/11/14 6:52 p.m.•73 views

CVE-2023-20533

CVE-2023-20533 is documented in multiple trusted sources as a vulnerability in the AMD SMU/ASP ecosystem: it describes insufficient DRAM address validation in the System Management Unit (SMU), which may allow a DMA attacker to read/write invalid DRAM addresses and could lead to denial of service....

7.5CVSS7.5AI score0.00499EPSS

Exploits0References3Affected Software1

Cvelist•added 2023/11/14 6:52 p.m.•26 views

CVE-2021-46774

Insufficient DRAM address validation in System Management Unit SMU may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service...

6.7CVSS8.7AI score0.00508EPSS

Exploits0References3

Vulnrichment•added 2023/11/14 6:52 p.m.•30 views

CVE-2021-46774

Insufficient DRAM address validation in System Management Unit SMU may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service...

6.7CVSS6.6AI score0.00508EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by