Ryzen Pro 3900 Firmware Security Vulnerabilities and Issues — Ryzen Pro 3900 Firmware CVE List

Lucene search

AmdRyzen Pro 3900 Firmware

6 matches found

CVE•added 2023/01/11 8:15 a.m.•73 views

CVE-2021-26346

Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service.

5.5CVSS6AI score0.00051EPSS

CVE•added 2022/02/04 11:15 p.m.•66 views

CVE-2020-12965

When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage.

7.5CVSS7.6AI score0.00607EPSS

CVE•added 2023/11/14 7:15 p.m.•66 views

CVE-2023-20571

A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.

8.1CVSS6.8AI score0.21337EPSS

CVE•added 2023/11/14 7:15 p.m.•65 views

CVE-2023-20563

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.

7.8CVSS8.7AI score0.0011EPSS

CVE•added 2023/11/14 7:15 p.m.•52 views

CVE-2023-20565

Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.

7.8CVSS8.7AI score0.0011EPSS

CVE•added 2021/11/16 7:15 p.m.•49 views

CVE-2021-26337

Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests.

5.5CVSS6.2AI score0.00107EPSS