CVE-2021-46754
CVE-2021-46754
Insufficient input validation in the ASP (AMD
Secure Processor) bootloader may allow an attacker with a compromised Uapp or
ABL to coerce the bootloader into exposing sensitive information to the SMU
(System Management Unit) resulting in a potential loss of confidentiality and
integrity.
Affected products
AMD · AMD Ryzen™ Embedded R1000AMD · AMD Ryzen™ Embedded R2000AMD · AMD Ryzen™ Embedded V1000AMD · AMD Ryzen™ Embedded V2000AMD · Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Dali”/”Dali” ULPAMD · Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Pollock”AMD · Ryzen™ 2000 series Desktop Processors “Raven Ridge” AM4AMD · Ryzen™ 2000 Series Mobile Processors “Raven Ridge” FP5AMD · Ryzen™ 3000 Series Mobile processor, 2nd Gen AMD Ryzen™ Mobile Processors with Radeon™ Graphics “Picasso”AMD · Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics “Renoir”AMD · Ryzen™ 5000 Series Desktop processor with Radeon™ Graphics “Cezanne” AM4AMD · Ryzen™ 5000 Series Mobile processors with Radeon™ Graphics “Cezanne”AMD · Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →