Epyc 7313 Firmware Security Vulnerabilities and Issues — Epyc 7313 Firmware CVE List

Lucene search

AmdEpyc 7313 Firmware

4 matches found

CVE•added 2023/05/09 8:15 p.m.•55 views

CVE-2021-46756

Insufficient validation of inputs inSVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow anattacker with a malicious Uapp or ABL to send malformed or invalid syscall tothe bootloader resulting in a potential denial of service and loss ofintegrity.

9.1CVSS9.1AI score0.00115EPSS

CVE•added 2023/05/09 7:15 p.m.•55 views

CVE-2021-46762

Insufficient input validation in the SMU mayallow an attacker to corrupt SMU SRAM potentially leading to a loss ofintegrity or denial of service.

9.1CVSS6.4AI score0.00026EPSS

CVE•added 2023/05/09 7:15 p.m.•53 views

CVE-2023-20520

Improper access control settings in ASPBootloader may allow an attacker to corrupt the return address causing astack-based buffer overrun potentially leading to arbitrary code execution.

9.8CVSS9.6AI score0.00312EPSS

CVE•added 2023/05/09 7:15 p.m.•45 views

CVE-2021-26379

Insufficient input validation of mailbox data in theSMU may allow an attacker to coerce the SMU to corrupt SMRAM, potentiallyleading to a loss of integrity and privilege escalation.

9.8CVSS9.3AI score0.00169EPSS