CVE-2021-26346

CVSS 5.5 MEDIUMEPSS 0.2%CWE-190

Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service.

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Produtos afetados

AMD · Ryzen 5000 Series

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031