Ryzen Threadripper Pro 3955wx Firmware Security Vulnerabilities and Issues — Ryzen Threadripper Pro 3955wx Firmware CVE List

Lucene search

AmdRyzen Threadripper Pro 3955wx Firmware

5 matches found

CVE•added 2023/11/14 7:15 p.m.•108 views

CVE-2022-23821

Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary code execution.

9.8CVSS9.5AI score0.00327EPSS

CVE•added 2023/11/14 7:15 p.m.•63 views

CVE-2022-23820

Failure to validate the AMD SMM communication buffermay allow an attacker to corrupt the SMRAM potentially leading to arbitrarycode execution.

9.8CVSS8.5AI score0.00184EPSS

CVE•added 2023/11/14 7:15 p.m.•57 views

CVE-2021-46774

Insufficient DRAM address validation in SystemManagement Unit (SMU) may allow an attacker to read/write from/to an invalidDRAM address, potentially resulting in denial-of-service.

7.5CVSS7.8AI score0.00022EPSS

CVE•added 2023/11/14 7:15 p.m.•56 views

CVE-2021-46766

Improper clearing of sensitive data in the ASP Bootloader may expose secret keys to a privileged attacker accessing ASP SRAM, potentially leading to a loss of confidentiality.

5.5CVSS6.1AI score0.00021EPSS

CVE•added 2023/11/14 7:15 p.m.•56 views

CVE-2023-20533

Insufficient DRAM address validation in SystemManagement Unit (SMU) may allow an attacker to read/write from/to an invalidDRAM address, potentially resulting in denial-of-service.

7.5CVSS7.5AI score0.00033EPSS