Failure to validate the communication buffer and communication service in the BIOS may allow an attacker to tamper with the buffer resulting in potential SMM (System Management Mode) arbitrary code execution.
7.8CVSS
8AI Score
0.0004EPSS
A bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM, to trigger a CPU core hang resulting in a potential denial of service. AMD believes the specific code includes a specific x86 instruction sequence that would not be generated by compilers.
5.5CVSS
5.9AI Score
0.0004EPSS
Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.
6.5CVSS
7.2AI Score
0.0004EPSS
LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
5.6CVSS
6.5AI Score
0.975EPSS