CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/02/10 7:48 p.m.•27 views

CVE-2021-26410

The CVE-2021-26410 entry concerns an improper syscall input validation in the AMD Secure Processor (ASP) that may force the kernel to read syscall parameter values from its own memory space, enabling an attacker to infer contents of kernel memory and potentially disclose information. Connected so...

1.8CVSS5.5AI score0.00146EPSS

Vulnrichment•added 2026/02/10 7:46 p.m.•7 views

CVE-2025-29949

Insufficient input parameter sanitization in AMD Secure Processor ASP Boot Loader legacy recovery mode only could allow an attacker to write out-of-bounds to corrupt Secure DRAM potentially resulting in denial of service...

ATTACKERKB•added 2026/02/10 7:46 p.m.•5 views

CVE-2025-29949

Cvelist•added 2026/02/10 7:46 p.m.•26 views

CVE-2025-29949

4.8CVSS0.00134EPSS

CVE•added 2026/02/10 7:46 p.m.•11 views

CVE-2025-29949

CVE-2025-29949 is an AMD ASP Boot Loader issue limited to legacy recovery mode. The connected documents confirm insufficient input parameter sanitization in the ASP Boot Loader, which could allow an out-of-bounds write that corrupts Secure DRAM and may cause a denial of service. Affected software...

Positive Technologies•added 2026/02/10 12:0 a.m.•4 views

PT-2026-7463

Name of the Vulnerable Software and Affected Versions AMD Secure Processor ASP affected versions not specified Description A buffer overflow exists in the AMD Secure Processor ASP bootloader. This flaw could allow an attacker to overwrite memory. Successful exploitation may lead to privilege...

7.3CVSS6.1AI score0.00137EPSS

Positive Technologies•added 2026/02/10 12:0 a.m.•4 views

PT-2026-7459

Name of the Vulnerable Software and Affected Versions AMD Secure Processor affected versions not specified Description A flaw exists in the syscall input validation within the AMD Secure Processor ASP. This issue could allow an attacker to force the kernel to read syscall parameter values from it...

1.8CVSS5.4AI score0.00146EPSS

Positive Technologies•added 2026/02/10 12:0 a.m.•8 views

PT-2026-7464

Name of the Vulnerable Software and Affected Versions AMD Secure Processor ASP Boot Loader affected versions not specified Description A flaw exists in the AMD Secure Processor ASP Boot Loader where insufficient parameter sanitization could allow an attacker with access to SPIROM upgrade to...

5.4CVSS5.8AI score0.00126EPSS

Positive Technologies•added 2026/02/10 12:0 a.m.•7 views

PT-2026-7462

Name of the Vulnerable Software and Affected Versions AMD Secure Processor ASP Boot Loader affected versions not specified Description A flaw exists in the AMD Secure Processor ASP Boot Loader, specifically within its legacy recovery mode. This issue involves inadequate sanitization of input...

Amd•added 2026/02/10 12:0 a.m.•9 views

AMD Graphics Driver Vulnerabilities – February 2026

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description | CVSS Score ---|---|--- CVE-2024-36324| Improper input validation in the AMD Graphics Driver could allow an attacker to supply a specially crafted pointer, potentially leading to arbitrary code execution.| 8.8 High...

8.8CVSS5.8AI score0.00175EPSS

Exploits0

Amd•added 2026/02/10 12:0 a.m.•10 views

AMD Athlon™ and AMD Ryzen™ Processor Vulnerabilities – February 2026

CVE Details Refer to Glossary for explanation of terms CVE| CVE Description| CVSS Score| CVSS Attack Vector ---|---|---|--- CVE-2025-52533| Improper access control in an on-chip debug interface could allow a privileged attacker to enable a debug interface and potentially compromise data...

8.7CVSS6.2AI score0.00307EPSS

Exploits0

CVE•added 2026/02/02 3:20 p.m.•10 views

CVE-2025-47359

Technical details are not publicly available in the provided documents; monitor for updates.

7.8CVSS5.3AI score0.00094EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/02/02 3:20 p.m.•6 views

CVE-2025-47359 Use After Free in Secure Processor

Memory Corruption when multiple threads simultaneously access a memory free API...

7.8CVSS5.3AI score0.00094EPSS

Cvelist•added 2026/02/02 3:20 p.m.•27 views

CVE-2025-47359 Use After Free in Secure Processor

Memory Corruption when multiple threads simultaneously access a memory free API...

7.8CVSS0.00094EPSS

CVE•added 2026/02/02 3:20 p.m.•10 views

CVE-2025-47358

CVE-2025-47358 describes a memory corruption/use-after-free scenario where a modified user-space address passed to mem_free leads to inadvertent kernel memory being freed. Multiple sources identify the issue in the Secure Processor family, with the underlying cause being improper handling of user...

7.8CVSS5.3AI score0.00092EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/02/02 3:20 p.m.•5 views

CVE-2025-47358 Use After Free in Secure Processor

Memory Corruption when user space address is modified and passed to memfree API, causing kernel memory to be freed inadvertently...

7.8CVSS5.3AI score0.00092EPSS

Cvelist•added 2026/02/02 3:20 p.m.•27 views

CVE-2025-47358 Use After Free in Secure Processor

Memory Corruption when user space address is modified and passed to memfree API, causing kernel memory to be freed inadvertently...

7.8CVSS0.00092EPSS

CNNVD•added 2025/11/23 12:0 a.m.•3 views

AMD Zynq UltraScale+ 安全漏洞

AMD Zynq UltraScale+ is a multiprocessor system-on-chip from UltraMicroelectronics AMD. A security vulnerability exists in AMD Zynq UltraScale+ that originates from the unused security state of the calling processor and could result in a non-secure processor accessing secure memory or cryptograph...

8.6CVSS6.6AI score0.0016EPSS