324 matches found
PT-2023-1407 · Amd · Amd Bios
Name of the Vulnerable Software and Affected Versions: AMD BIOS software affected versions not specified Description: The issue is related to a buffer overflow in the memory of AMD processor security microcode, potentially allowing a remote attacker to disclose protected information. It involves...
PT-2023-1408 · Amd · Amd Secure Processor
Name of the Vulnerable Software and Affected Versions: AMD Secure Processor affected versions not specified Description: The issue is related to insufficient validation of address mapping to IO in the AMD Secure Processor, which may result in a loss of memory integrity in the SNP guest. This coul...
CVE-2021-34566
In WAGO I/O-Check Service in multiple products an unauthenticated remote attacker can send a specially crafted packet containing OS commands to crash the iocheck process and write memory resulting in loss of integrity and DoS...
New Windows 11 security features are designed for hybrid work
Attackers are constantly evolving, becoming increasingly sophisticated and destructive—the median time for an attacker to access your private data if you fall victim to a phishing email is 1 hour, 12 minutes.1 Microsoft tracks more than 35 ransomware families and more than 250 unique nation-state...
AMD Processors 安全漏洞
AMD Processors is a processor from AMD. A security vulnerability exists in AMD Processors that stems from a failure to refresh the Translation Lookaside Buffer TLB of the I/O memory management unit IOMMU, which can cause an IO device to write to memory it cannot access, resulting in a loss of...
CVE-2021-26353
Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRTM UApp in a partially initialized state potentially resulting in loss of memory integrity...
CVE-2021-26353
Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRTM UApp in a partially initialized state potentially resulting in loss of memory integrity...
CVE-2021-26324
A bug with the SEV-ES TMR may lead to a potential loss of memory integrity for SNP-active VMs...
CVE-2021-26324
A bug with the SEV-ES TMR may lead to a potential loss of memory integrity for SNP-active VMs...
Denial of service
A bug with the SEV-ES TMR may lead to a potential loss of memory integrity for SNP-active VMs...
Authorization
Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRTM UApp in a partially initialized state potentially resulting in loss of memory integrity...
CVE-2021-26353
Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRTM UApp in a partially initialized state potentially resulting in loss of memory integrity...
CVE-2021-26353
CVE-2021-26353 – AMD SMM input validation vulnerability. The issue arises from failure to validate inputs in System Management Mode (SMM), which can allow an attacker to trigger a mishandled error and leave the DRTM UApp partially initialized, potentially causing loss of memory integrity. Affecte...
CVE-2021-26324
CVE-2021-26324 concerns a bug in the SEV-ES TMR that may lead to a loss of memory integrity for SNP-active VMs on AMD EPYC platforms. The available documents do not provide an attacker’s exploit path or exploitability details. The AMD security bulletin AMD-SB-1021 maps this CVE to affected EPYC g...
CVE-2021-26324
A bug with the SEV-ES TMR may lead to a potential loss of memory integrity for SNP-active VMs...
AMD EPYC SEV-ES TMR 安全漏洞
AMD EPYC is an x86 server microprocessor product line from AMD, known as "Xiao Long" in Chinese, utilizing the Zen microarchitecture. A security vulnerability exists in AMD EPYC SEV-ES TMR. An attacker could exploit this vulnerability to cause a loss of memory integrity in SNP-active VMs...
PT-2022-6302 · Amd · System Management Mode
Name of the Vulnerable Software and Affected Versions: System Management Mode SMM affected versions not specified Description: The issue is related to the failure to validate inputs in SMM, which may allow an attacker to create a mishandled error, leaving the DRTM UApp in a partially initialized...
CVE-2021-26323
Failure to validate SEV Commands while SNP is active may result in a potential impact to memory integrity...
CVE-2021-26323
Failure to validate SEV Commands while SNP is active may result in a potential impact to memory integrity...
Authorization
Failure to validate SEV Commands while SNP is active may result in a potential impact to memory integrity...