Lucene search
K

173 matches found

Cvelist
Cvelist
added 2023/05/09 7:0 p.m.34 views

CVE-2021-46756

Insufficient validation of inputs in SVCMAPUSERSTACK in the ASP AMD Secure Processor bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the bootloader resulting in a potential denial of service and loss of integrity...

9.2AI score0.00645EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/09 7:0 p.m.7 views

CVE-2021-46756

Insufficient validation of inputs in SVCMAPUSERSTACK in the ASP AMD Secure Processor bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the bootloader resulting in a potential denial of service and loss of integrity...

9.3AI score0.00645EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2023/05/09 7:0 p.m.10 views

CVE-2021-46755

Failure to unmap certain SysHub mappings in error paths of the ASP AMD Secure Processor bootloader may allow an attacker with a malicious bootloader to exhaust the SysHub resources resulting in a potential denial of service...

8.4AI score0.00616EPSS
Exploits0References1
CVE
CVE
added 2023/05/09 7:0 p.m.74 views

CVE-2021-46754

CVE-2021-46754: Insufficient input validation in the ASP bootloader can allow a compromised UApp/ABL to expose sensitive information to the SMU, risking confidentiality and integrity. AMD-SB-5001 lists this CVE with Medium severity and provides firmware-based mitigations via Platform Initializati...

9.1CVSS9.1AI score0.00565EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2023/05/09 7:0 p.m.30 views

CVE-2021-46754

Insufficient input validation in the ASP AMD Secure Processor bootloader may allow an attacker with a compromised Uapp or ABL to coerce the bootloader into exposing sensitive information to the SMU System Management Unit resulting in a potential loss of confidentiality and integrity...

9.1AI score0.00565EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/05/09 6:59 p.m.31 views

CVE-2021-46749

Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...

7.9AI score0.00616EPSS
Exploits0References1
CVE
CVE
added 2023/05/09 6:59 p.m.57 views

CVE-2021-46749

CVE-2021-46749 corresponds to an out-of-bounds read vulnerability in the AMD Secure Processor (ASP) affecting the System Management Interface (SMI) mailbox checksum calculation, caused by insufficient bounds checking. The vulnerability can trigger a data abort and potentially lead to a denial of ...

7.5CVSS7.8AI score0.00616EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/05/09 6:59 p.m.10 views

CVE-2021-46749

Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...

7.9AI score0.00616EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.4 views

AMD Secure Processor和AMD System Management Unit 安全漏洞

The AMD System Management Unit SMU and AMD Secure Processor ASP are both products of UltraMicroelectronics AMD, Inc.The AMD System Management Unit is a system management unit.The AMD Secure Processor is a standalone AMD Secure Processor is a standalone ARM Coretex-A5 chip. A security vulnerabilit...

7.1CVSS7AI score0.00176EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.7 views

PT-2023-12588 · Amd · Amd Secure Processor

Name of the Vulnerable Software and Affected Versions: AMD Secure Processor affected versions not specified Description: The issue is related to insufficient bounds checking in the AMD Secure Processor, which may allow for an out of bounds read in the System Management Interface mailbox checksum...

7.5CVSS7.2AI score0.00616EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.4 views

PT-2023-12568 · Amd · Amd Secure Processor

Name of the Vulnerable Software and Affected Versions: AMD Secure Processor affected versions not specified Description: The issue is related to the failure to validate the length fields of the ASP sensor fusion hub headers. This may allow an attacker with a malicious Uapp or ABL to map the ASP...

9.1CVSS6.4AI score0.0056EPSS
Exploits0References4
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.4 views

AMD Secure Processor和AMD System Management Unit 安全漏洞

AMD Secure Processor ASP is a standalone ARM Coretex-A5 chip from UltraMicroelectronics AMD. A security vulnerability exists in AMD Secure Processor and AMD System Management Unit. No information about this vulnerability is available at this time, so please stay tuned to CNNVD or the vendor...

7.5CVSS7.3AI score0.00616EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/05/09 12:0 a.m.6 views

PT-2023-12569 · Amd · Amd Secure Processor

Name of the Vulnerable Software and Affected Versions: AMD Secure Processor affected versions not specified Description: The issue is related to insufficient input validation in the ASP bootloader, which may allow an attacker with a compromised Uapp or ABL to expose sensitive information to the...

9.1CVSS7.6AI score0.00565EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.5 views

AMD Secure Processor和AMD System Management Unit 输入验证错误漏洞

The AMD System Management Unit SMU and AMD Secure Processor ASP are both products of UltraMicroelectronics AMD, Inc.The AMD System Management Unit is a system management unit.The AMD Secure Processor is a standalone AMD Secure Processor is a standalone ARM Coretex-A5 chip. A security vulnerabilit...

8.8CVSS7.9AI score0.00771EPSS
Exploits0References3
CNNVD
CNNVD
added 2023/05/09 12:0 a.m.5 views

AMD Secure Processor和AMD System Management Unit 安全漏洞

The AMD System Management Unit SMU and AMD Secure Processor ASP are both products of UltraMicroelectronics AMD, Inc.The AMD System Management Unit is a system management unit.The AMD Secure Processor is a standalone AMD Secure Processor is a standalone ARM Coretex-A5 chip. A security vulnerabilit...

5.5CVSS5.7AI score0.00189EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2023/03/01 12:0 a.m.8 views

The vulnerability of AMD Secure Processor’s microprogrammed software, including the System Management Unit (SMU), arises from the possibility of writing operations outside of the buffer in memory, allowing an attacker to compromise the integrity of the protected information.

The vulnerability of AMD Secure Processor ASP and System Management Unit SMU microprogramming software lies in the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow a malicious actor to compromise the integrity of the protected information...

5.3CVSS6.2AI score0.00504EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2023/03/01 12:0 a.m.9 views

The vulnerability of AMD Secure Processor’s microprogramming software is related to synchronization errors when using shared resources (“Race Conditions”). This allows a malicious actor to trigger a service failure.

The vulnerability of AMD Secure Processor ASP microprogramming software is related to synchronization errors when using shared resources “Race Conditions”. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.7CVSS6.1AI score0.00179EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:14 a.m.2 views

SUSE CVE-2019-9836

Secure Encrypted Virtualization SEV on Advanced Micro Devices AMD Platform Security Processor PSP; aka AMD Secure Processor or AMD-SP 0.17 build 11 and earlier has an insecure cryptographic implementation...

4.7CVSS7AI score0.01609EPSS
Exploits1References18
SUSE CVE
SUSE CVE
added 2023/02/15 3:44 a.m.3 views

SUSE CVE-2021-26347

Failure to validate the integer operand in ASP AMD Secure Processor bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service...

4.7CVSS7.2AI score0.00188EPSS
Exploits0References7
NVD
NVD
added 2023/01/11 8:15 a.m.22 views

CVE-2021-46779

Insufficient input validation in SVCECCPRIMITIVE system call in a compromised user application or ABL may allow an attacker to corrupt ASP AMD Secure Processor OS memory which may lead to potential loss of integrity and availability...

7.1CVSS6.8AI score0.00176EPSS
Exploits0References1
Rows per page
Query Builder