CVE-2021-26320

EPSS 0.2%CWE-295

Insufficient validation of the AMD SEV Signing Key (ASK) in the SEND_START command in the SEV Firmware may allow a local authenticated attacker to perform a denial of service of the PSP

Affected products

AMD · 1st Gen AMD EPYC™AMD · 2nd Gen AMD EPYC™AMD · 3rd Gen AMD EPYC™

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021