CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

49 matches found

EUVD-2026-38846

In the Linux kernel, the following vulnerability has been resolved: net: psp: require admin permission for dev-set and key-rotate The dev-set and key-rotate netlink operations modify shared device state PSP version configuration and cryptographic key material, respectively but do not require...

5.7AI score

Exploits0References4

AstraLinux•added 6 days ago•4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: The calltrace warning in amddrmbuddyfini has been fixed. The following call trace was observed when the amdgpu driver was removed. This issue arises because the BOs allocated for psp are not freed until the driver is...

5.5CVSS6.2AI score0.00143EPSS

Exploits0References2

RedhatCVE•added 2026/05/01 7:43 p.m.•4 views

CVE-2026-31699

A flaw was found in the Linux kernel's crypto: ccp module. A local user could exploit a vulnerability where the system attempts to copy a Certificate Signing Request CSR to userspace even after a Platform Security Processor PSP command has failed. This can lead to a slab-out-of-bounds write,...

7.1CVSS6AI score0.00126EPSS

Exploits0References4

ATTACKERKB•added 2026/05/01 1:55 p.m.•3 views

CVE-2026-31697

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp: Don't attempt to copy ID to userspace if PSP command failed When retrieving the ID for the CPU, don't attempt to copy the ID blob to userspace if the firmware command failed. If the failure was due to an invalid...

6AI score0.00126EPSS

Exploits0References6Affected Software1

RedhatCVE•added 2026/04/20 12:21 p.m.•3 views

CVE-2025-54510

A flaw was found in the AMD Platform Security Processor in AMD EPYC™ 9005 Series CPUs. A missing lock check allows a privileged attacker with local access to potentially impact the confidentiality of guest data. This vulnerability could lead to unauthorized disclosure of sensitive information...

6CVSS5.7AI score0.00108EPSS

Exploits1References4

NVD•added 2026/04/16 7:16 p.m.•3 views

CVE-2025-54510

A missing lock verification in AMD Secure Processor ASP firmware may permit a locally authenticated attacker with administrative privileges to alter MMIO routing on some Zen 5-based products, potentially compromising guest system integrity...

5.9CVSS0.00108EPSS

Exploits1References1

Cvelist•added 2026/04/16 6:44 p.m.•20 views

CVE-2025-54510

5.9CVSS0.00108EPSS

Exploits1References1

CVE•added 2026/04/16 6:44 p.m.•64 views

CVE-2025-54510

The connected documents confirm CVE-2025-54510 affects AMD Zen 5 (and related platforms) via a missing lock verification in the AMD Secure Processor (ASP) firmware that can allow a locally authenticated, high-privilege attacker to alter MMIO routing during boot/init, potentially compromising gues...

5.9CVSS5.8AI score0.00108EPSS

Exploits1References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-13139

Malware in sbrugna...

5.5CVSS5.5AI score0.00501EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2019-19196

Malware in sbrugna...

5.3CVSS5.7AI score0.01609EPSS

Exploits1References8

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-20544

Malware in sbrugna...

9.3CVSS9.2AI score0.01811EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-13121

Malware in sbrugna...

7.8CVSS7.6AI score0.0016EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•7 views

EUVD-2020-5241

Malware in sbrugna...

7.8CVSS7.6AI score0.0024EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-59815

Malicious code in bioql PyPI...

6.3AI score0.00143EPSS

Exploits0References4

CNNVD•added 2025/09/06 12:0 a.m.•2 views

AMD Graphics Driver和AMD Client Processor 安全漏洞

AMD Graphics Driver and AMD Client Processor are both products of UltraMed Semiconductor AMD, Inc.AMD Graphics Driver is an integrated graphics driver.AMD Client Processor is a processor for client devices e.g., personal computers PCs, laptops, etc.. A security vulnerability exists in AMD Graphic...

7.2CVSS6.5AI score0.00133EPSS

Exploits0References2

BDU FSTEC•added 2024/12/18 12:0 a.m.•3 views

The vulnerability of the loader for AMD Platform Security Processor processors allows a hacker to execute arbitrary code.

The vulnerability of the loader for AMD Platform Security Processor processors involves incorrect checking of the range in the object header. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7AI score0.0117EPSS

Exploits0References5Affected Software1

OSV•added 2024/08/21 1:15 a.m.•1 views

UBUNTU-CVE-2024-43874

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix null pointer dereference in sevsnpshutdownlocked Fix a null pointer dereference induced by DEBUGTESTDRIVERREMOVE. Return from sevsnpshutdownlocked if the pspdevice or the sevdevice structs are not initialized...

5.5CVSS6.6AI score0.0018EPSS

Exploits0References5

SUSE CVE•added 2023/02/15 4:28 a.m.•3 views

SUSE CVE-2018-8936

The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips allow Platform Security Processor PSP privilege escalation...

9.3CVSS9.4AI score0.01811EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:58 a.m.•3 views

SUSE CVE-2020-12961

A potential vulnerability exists in AMD Platform Security Processor PSP that may allow an attacker to zero any privileged register on the System Management Network which may lead to bypassing SPI ROM protections...

7.8CVSS7.6AI score0.0024EPSS

Exploits0References3

OSV•added 2021/11/16 7:15 p.m.•3 views

CVE-2021-26320

Insufficient validation of the AMD SEV Signing Key ASK in the SENDSTART command in the SEV Firmware may allow a local authenticated attacker to perform a denial of service of the PSP...

5.5CVSS5.8AI score0.0018EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by