Epyc 7282 Firmware@romepi 1.0.0.e Security Vulnerabilities and Issues — Epyc 7282 Firmware@romepi 1.0.0.e CVE List

Lucene search

AmdEpyc 7282 Firmwareromepi 1.0.0.e

6 matches found

CVE•added 2023/05/09 8:15 p.m.•55 views

CVE-2021-46756

Insufficient validation of inputs inSVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow anattacker with a malicious Uapp or ABL to send malformed or invalid syscall tothe bootloader resulting in a potential denial of service and loss ofintegrity.

9.1CVSS9.1AI score0.00115EPSS

CVE•added 2023/05/09 7:15 p.m.•55 views

CVE-2021-46762

Insufficient input validation in the SMU mayallow an attacker to corrupt SMU SRAM potentially leading to a loss ofintegrity or denial of service.

9.1CVSS6.4AI score0.00026EPSS

CVE•added 2023/05/09 7:15 p.m.•54 views

CVE-2021-46763

Insufficient input validation in the SMU mayenable a privileged attacker to write beyond the intended bounds of a sharedmemory buffer potentially leading to a loss of integrity.

7.5CVSS7.9AI score0.00092EPSS

CVE•added 2023/05/09 7:15 p.m.•52 views

CVE-2021-46764

Improper validation of DRAM addresses in SMU mayallow an attacker to overwrite sensitive memory locations within the ASPpotentially resulting in a denial of service.

7.5CVSS7.8AI score0.00115EPSS

CVE•added 2023/05/09 7:15 p.m.•50 views

CVE-2021-46769

Insufficient syscall input validation in the ASPBootloader may allow a privileged attacker to execute arbitrary DMA copies,which can lead to code execution.

8.8CVSS9.1AI score0.00156EPSS

CVE•added 2023/05/09 7:15 p.m.•50 views

CVE-2021-46775

Improper input validation in ABL may enable anattacker with physical access, to perform arbitrary memory overwrites,potentially leading to a loss of integrity and code execution.

6.8CVSS7.2AI score0.00061EPSS