CVE-2021-46755

CVE-2021-46755 concerns the AMD Secure Processor (ASP) bootloader: failure to unmap certain SysHub mappings in error paths could allow a malicious bootloader attacker to exhaust SysHub resources, causing denial of service. The CVE is part of AMD’s ASP/SMU risk set and is listed in AMD-SB-3001 and...

CVE-2021-46754

CVE-2021-46754: Insufficient input validation in the ASP bootloader can allow a compromised UApp/ABL to expose sensitive information to the SMU, risking confidentiality and integrity. AMD-SB-5001 lists this CVE with Medium severity and provides firmware-based mitigations via Platform Initializati...

CVE-2021-46754

Insufficient input validation in the ASP AMD Secure Processor bootloader may allow an attacker with a compromised Uapp or ABL to coerce the bootloader into exposing sensitive information to the SMU System Management Unit resulting in a potential loss of confidentiality and integrity...

CVE-2021-26371

A compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may result in exposure of ASP memory to userspace, potentially leading to information disclosure...

CVE-2021-26371

A compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may result in exposure of ASP memory to userspace, potentially leading to information disclosure...

CVE-2021-26371

The CVE-2021-26371 entry concerns AMD Secure Processor (ASP)/AMD System Management Unit (SMU) where a compromised ABL or UApp could trigger a SHA256 system call to the bootloader, potentially exposing ASP memory to userspace and causing information disclosure. Technical details from connected sou...

CVE-2021-26356

A TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read to memory potentially resulting in S3 data corruption and information disclosure...

CVE-2021-26356

A TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read to memory potentially resulting in S3 data corruption and information disclosure...

CVE-2021-26356

CVE-2021-26356 describes a TOCTOU vulnerability in the ASP bootloader that can allow tampering with the SPI ROM after memory reads, potentially causing S3 data corruption and information disclosure in AMD Secure Processor/ASP boot scenarios. Affected components include the ASP bootloader within A...

CVE-2023-20520

CVE-2023-20520 affects the AMD Secure Processor (ASP) Bootloader. The issue is described as improper access control in the ASP Bootloader which may allow an attacker to corrupt the return address, causing a stack-based buffer overrun and potentially arbitrary code execution. Connected sources ide...

CVE-2021-46769

CVE-2021-46769 affects the AMD ASP bootloader (ASP) and allows a privileged attacker to trigger insufficient syscall input validation to perform arbitrary DMA copies, potentially leading to code execution. The AMD AMD-SB-3001 bulletin summarizes the impact as high for this CVE and links remediati...

CVE-2021-46769

Insufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to execute arbitrary DMA copies, which can lead to code execution...

shim: 3rd party shim allow secure boot bypass

A flaw was found in Eurosoft bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader currently in use...

shim: 3rd party shim allow secure boot bypass

A flaw was found in CryptoPro Secure Disk bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader...

shim: 3rd party shim allow secure boot bypass

A flaw was found in New Horizon Datasys bootloaders before 2022-06-01. An attacker may use this bootloader to bypass or tamper with Secure Boot protections. In order to load and execute arbitrary code in the pre-boot stage, an attacker simply needs to replace the existing signed bootloader...

PT-2023-12089 · Unknown · Asp Bootloader

Name of the Vulnerable Software and Affected Versions: ASP bootloader affected versions not specified Description: A Time-of-Check-to-Time-of-Use TOCTOU issue in the ASP bootloader may allow an attacker to tamper with the SPI ROM following data read to memory, potentially resulting in S3 data...

PT-2023-12569 · Amd · Amd Secure Processor

Name of the Vulnerable Software and Affected Versions: AMD Secure Processor affected versions not specified Description: The issue is related to insufficient input validation in the ASP bootloader, which may allow an attacker with a compromised Uapp or ABL to expose sensitive information to the...

PT-2023-17449 · Unknown · Asp Bootloader

Name of the Vulnerable Software and Affected Versions: ASP Bootloader affected versions not specified Description: The issue is related to improper access control settings in ASP Bootloader, which may allow an attacker to corrupt the return address, causing a stack-based buffer overrun. This coul...

PT-2023-12093 · Amd · 1St Gen Amd Epyc™ Processors +110

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may result in exposure of ASP memory to userspace,...

PT-2023-12571 · Amd · Asp

Name of the Vulnerable Software and Affected Versions: ASP AMD Secure Processor bootloader affected versions not specified Description: The issue is related to insufficient validation of inputs in the SVC MAP USER STACK component of the ASP bootloader. This may allow an attacker with a malicious...