Lucene search
K

173 matches found

ATTACKERKB
ATTACKERKB
added 2024/08/13 5:15 p.m.7 views

CVE-2022-23817

Insufficient checking of memory buffer in AMD Secure Processor ASP Secure OS may allow an attacker with a malicious trusted application to read/write to the ASP Secure OS kernel virtual address space, potentially resulting in privilege escalation...

7.3CVSS5.9AI score0.00184EPSS
Exploits0References6
CVE
CVE
added 2024/08/13 4:54 p.m.63 views

CVE-2024-21981

CVE-2024-21981 – AMD Secure Processor (ASP) concerns an improper key usage control in ASP. An attacker with local access and arbitrary code execution in ASP could extract ASP cryptographic keys, threatening confidentiality and integrity. Connected AMD advisories list affected ASP/PSP components a...

5.7CVSS7AI score0.00136EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/13 4:54 p.m.12 views

CVE-2024-21981

Improper key usage control in AMD Secure Processor ASP may allow an attacker with local access who has gained arbitrary code execution privilege in ASP to extract ASP cryptographic keys, potentially resulting in loss of confidentiality and integrity...

5.7CVSS6.9AI score0.00136EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.6 views

PT-2024-19136 · Amd +1 · Amd Secure Processor +1

Name of the Vulnerable Software and Affected Versions: AMD Secure Processor ASP affected versions not specified Description: The issue is related to improper key usage control in the AMD Secure Processor ASP, which may allow an attacker with local access and arbitrary code execution privilege in...

5.7CVSS6.6AI score0.00136EPSS
Exploits0References9
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.5 views

AMD Secure Processor 安全漏洞

AMD Secure Processor ASP is a standalone ARM Coretex-A5 chip from UltraMicroelectronics AMD. A security vulnerability exists in AMD Secure Processor ASP, which arises from improper key usage controls and could allow an attacker with local access and who has gained arbitrary code execution...

5.7CVSS7.1AI score0.00136EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.4 views

AMD Secure Processor和AMD Secure Encrypted Virtualization 安全漏洞

AMD Secure Encrypted Virtualization and AMD Secure Processor ASP are both products of Ultraviolet Semiconductor AMD, Inc.AMD Secure Encrypted Virtualization is a software application. Hardware-accelerated memory encryption to protect data in use.AMD Secure Processor is a standalone ARM Coretex-A5...

10CVSS6.4AI score0.00299EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/08/13 12:0 a.m.3 views

AMD Secure Processor和AMD Secure Encrypted Virtualization 安全漏洞

AMD Secure Encrypted Virtualization and AMD Secure Processor ASP are both products of Ultraviolet Semiconductor AMD, Inc.AMD Secure Encrypted Virtualization is a software application. Hardware-accelerated memory encryption to protect data in use.AMD Secure Processor is a standalone ARM Coretex-A5...

6CVSS5.9AI score0.00174EPSS
Exploits0References3
Amd
Amd
added 2024/08/13 12:0 a.m.79 views

Client Vulnerabilities – Aug 2024

Bulletin ID: AMD-SB-4004 Potential Impact: Varies by CVE, see descriptions below Severity: Varies by CVE, see descriptions below Summary Potential vulnerabilities in AMD Secure Processor ASP, and other platform components were reported. Mitigations are being provided in Platform Initialization PI...

8.2CVSS6.8AI score0.00184EPSS
Exploits0
NVD
NVD
added 2023/11/14 7:15 p.m.46 views

CVE-2021-46748

Insufficient bounds checking in the ASP AMD Secure Processor may allow an attacker to access memory outside the bounds of what is permissible to a TA Trusted Application resulting in a potential denial of service...

5.5CVSS0.00211EPSS
Exploits0References2
NVD
NVD
added 2023/11/14 7:15 p.m.31 views

CVE-2021-46758

Insufficient validation of SPI flash addresses in the ASP AMD Secure Processor bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity...

6.1CVSS0.00325EPSS
Exploits0References1
Prion
Prion
added 2023/11/14 7:15 p.m.20 views

Out-of-bounds

Insufficient bounds checking in the ASP AMD Secure Processor may allow an attacker to access memory outside the bounds of what is permissible to a TA Trusted Application resulting in a potential denial of service...

1.7CVSS7AI score0.00211EPSS
Exploits0References2Affected Software2
Cvelist
Cvelist
added 2023/11/14 6:54 p.m.34 views

CVE-2021-46758

Insufficient validation of SPI flash addresses in the ASP AMD Secure Processor bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity...

6.9AI score0.00325EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/11/14 6:50 p.m.39 views

CVE-2021-46748

Insufficient bounds checking in the ASP AMD Secure Processor may allow an attacker to access memory outside the bounds of what is permissible to a TA Trusted Application resulting in a potential denial of service...

6.2AI score0.00211EPSS
Exploits0References2
CVE
CVE
added 2023/11/14 6:50 p.m.78 views

CVE-2021-46748

CVE-2021-46748 involves insufficient bounds checking in the AMD Secure Processor (ASP), potentially allowing a local attacker to access memory outside the bounds allowed to a Trusted Application, causing a denial of service. Connected sources confirm impact on AMD graphics components and ASP inte...

5.5CVSS5.6AI score0.00211EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2023/11/14 12:0 a.m.4 views

AMD Secure Processor Buffer Error Vulnerability

AMD Secure Processor ASP is a standalone ARM Coretex-A5 chip from UltraMicroelectronics AMD. The AMD Secure Processor suffers from a buffer error vulnerability that stems from the fact that insufficient boundary checking in the AMD Secure Processor could lead to an attacker accessing memory outsi...

5.5CVSS6.8AI score0.00211EPSS
Exploits0References4
Prion
Prion
added 2023/05/09 8:15 p.m.29 views

Input validation

Insufficient validation of inputs in SVCMAPUSERSTACK in the ASP AMD Secure Processor bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the bootloader resulting in a potential denial of service and loss of integrity...

6.4CVSS9.1AI score0.00645EPSS
Exploits0References2Affected Software63
OSV
OSV
added 2023/05/09 7:15 p.m.3 views

CVE-2021-46749

Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...

7.5CVSS5.8AI score0.00616EPSS
Exploits0References1
NVD
NVD
added 2023/05/09 7:15 p.m.29 views

CVE-2021-46749

Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...

7.5CVSS7.8AI score0.00616EPSS
Exploits0References1
Prion
Prion
added 2023/05/09 7:15 p.m.31 views

Authorization

Failure to validate the length fields of the ASP AMD Secure Processor sensor fusion hub headers may allow an attacker with a malicious Uapp or ABL to map the ASP sensor fusion hub region and overwrite data structures leading to a potential loss of confidentiality and integrity...

6.4CVSS9.1AI score0.0056EPSS
Exploits0References1Affected Software66
Vulnrichment
Vulnrichment
added 2023/05/09 7:1 p.m.11 views

CVE-2021-46794

Insufficient bounds checking in ASP AMD Secure Processor may allow for an out of bounds read in SMI System Management Interface mailbox checksum calculation triggering a data abort, resulting in a potential denial of service...

7.9AI score0.00616EPSS
Exploits0References1
Rows per page
Query Builder