Vulnerabilidades en AMD
443 resultadosCVE-2021-46791MEDIUMInsufficient input validation during parsing of the System Management Mode (SMM) binary may allow a maliciously crafted SMM executable binarEPSS 0.2%CVE-2021-26382—An attacker with root account privileges can load any legitimately signed firmware image into the Audio Co-Processor (ACP,) irrespective of EPSS 0.2%CVE-2021-46772LOWInsufficient input validation in the ABL may allow a privileged
attacker with access to the BIOS menu or UEFI shell to tamper with the
strucEPSS 0.2%CVE-2021-26320—Insufficient validation of the AMD SEV Signing Key (ASK) in the SEND_START command in the SEV Firmware may allow a local authenticated attacEPSS 0.2%CVE-2021-26402HIGHInsufficient bounds checking in ASP (AMD Secure Processor) firmware while handling BIOS mailbox commands, may allow an attacker to write parEPSS 0.2%CVE-2023-20523MEDIUMTOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leading to a loss of integrity or denial of sEPSS 0.2%CVE-2021-46757HIGHInsufficient checking of memory buffer in ASP
Secure OS may allow an attacker with a malicious TA to read/write to the ASP
Secure OS kernel EPSS 0.2%CVE-2021-26354MEDIUMInsufficient bounds checking in ASP may allow an
attacker to issue a system call from a compromised ABL which may cause
arbitrary memory valEPSS 0.2%CVE-2024-36310MEDIUMImproper input validation in the SMM communications buffer could allow a privileged attacker to perform an out of bounds read or write to SMEPSS 0.2%CVE-2023-31342HIGHImproper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execuEPSS 0.2%CVE-2023-31343HIGHImproper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execuEPSS 0.2%CVE-2021-26397HIGHInsufficient address validation, may allow an
attacker with a compromised ABL and UApp to corrupt sensitive memory locations
potentially resEPSS 0.2%CVE-2021-46779HIGHInsufficient input validation in SVC_ECC_PRIMITIVE system call in a compromised user application or ABL may allow an attacker to corrupt ASPEPSS 0.2%CVE-2023-31345HIGHImproper input validation in the SMM handler may allow a privileged attacker to overwrite SMRAM, potentially leading to arbitrary code execuEPSS 0.2%CVE-2023-20594—Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.EPSS 0.2%CVE-2023-20584MEDIUMIOMMU improperly handles certain special address
ranges with invalid device table entries (DTEs), which may allow an attacker
with privilegeEPSS 0.2%CVE-2023-31352MEDIUMA bug in the SEV firmware may allow an attacker with privileges to read unencrypted memory, potentially resulting in loss of guest private dEPSS 0.2%CVE-2024-36349LOWA transient execution vulnerability in some AMD processors may allow a user process to infer TSC_AUX even when such a read is disabled, poteEPSS 0.2%CVE-2023-20587HIGHImproper
Access Control in System Management Mode (SMM) may allow an attacker access to
the SPI flash potentially leading to arbitrary code EPSS 0.2%CVE-2021-26391HIGHInsufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gaEPSS 0.2%