20 matches found
EUVD-2020-5224
Malware in sbrugna...
EUVD-2020-5231
Malware in sbrugna...
SUSE CVE-2020-12951
Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM System Management Mode operations...
CVE-2021-26402
Insufficient bounds checking in ASP AMD Secure Processor firmware while handling BIOS mailbox commands, may allow an attacker to write partially-controlled data out-of-bounds to SMM or SEV-ES regions which may lead to a potential loss of integrity and availability...
Out-of-bounds
Insufficient bounds checking in ASP AMD Secure Processor firmware while handling BIOS mailbox commands, may allow an attacker to write partially-controlled data out-of-bounds to SMM or SEV-ES regions which may lead to a potential loss of integrity and availability...
CVE-2021-26402
Insufficient bounds checking in ASP AMD Secure Processor firmware while handling BIOS mailbox commands, may allow an attacker to write partially-controlled data out-of-bounds to SMM or SEV-ES regions which may lead to a potential loss of integrity and availability...
CVE-2021-26402
CVE-2021-26402 describes insufficient bounds checking in the AMD Secure Processor (ASP) firmware during BIOS mailbox handling, enabling an attacker to write partially controlled data out-of-bounds into SMM or SEV-ES regions and potentially compromise integrity and availability. The issue is discu...
CVE-2020-12946
Insufficient input validation in ASP firmware for discrete TPM commands could allow a potential loss of integrity and denial of service...
CVE-2020-12946
Insufficient input validation in ASP firmware for discrete TPM commands could allow a potential loss of integrity and denial of service...
CVE-2020-12944
Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution...
CVE-2020-12951
Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM System Management Mode operations...
Input validation
Insufficient input validation in ASP firmware for discrete TPM commands could allow a potential loss of integrity and denial of service...
Input validation
Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution...
Race condition
Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM System Management Mode operations...
CVE-2020-12944
Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution...
CVE-2020-12944
CVE-2020-12944 affects AMD Secure Processor (ASP) firmware, where insufficient validation of BIOS image length could allow arbitrary code execution. AMD documentation (AMD-SB-1027/1021) lists affected platforms across desktop, mobile and server AMD systems and provides mitigations via AGESA PI fi...
CVE-2020-12951
CVE-2020-12951 describes a race condition in the AMD Platform Security Processor (ASP) firmware that could allow less-privileged x86 code to perform ASP SMM operations. Connected sources confirm this vulnerability and tie it to AMD ASP/SMU firmware, with AMD advisories indicating mitigations via ...
CVE-2020-12951
Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM System Management Mode operations...
CVE-2020-12946
CVE-2020-12946 affects AMD’s Platform Security Processor (ASP) firmware, where insufficient input validation for discrete TPM commands could cause loss of integrity and denial of service. The issue is discussed in AMD/SUZE bulletins and is addressed by updating to specific AGESA PI software versi...
CVE-2020-12946
Insufficient input validation in ASP firmware for discrete TPM commands could allow a potential loss of integrity and denial of service...