Vulnerabilidades em AMD

443 resultados
CVE-2021-26373Insufficient bound checks in the System Management Unit (SMU) may result in a system voltage malfunction that could result in denial of resoEPSS 0.2%CVE-2021-26329AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provided which may result in a potential loss EPSS 0.2%CVE-2021-46748Insufficient bounds checking in the ASP (AMD Secure Processor) may allow an attacker to access memory outside the bounds of what is permissiEPSS 0.2%CVE-2023-31360HIGHIncorrect default permissions in the AMD Integrated Management Technology (AIM-T) Manageability Service installation directory could allow aEPSS 0.2%CVE-2023-20560 EPSS 0.2%CVE-2021-26363A malicious or compromised UApp or ABL could potentially change the value that the ASP uses for its reserved DRAM, to one outside of the fenEPSS 0.2%CVE-2021-26349Failure to assign a new report ID to an imported guest may potentially result in an SEV-SNP guest VM being tricked into trusting a dishonestEPSS 0.2%CVE-2020-12951Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM (System Management Mode) operations.EPSS 0.2%CVE-2021-26362A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call which results in mapping sensitive SystemEPSS 0.2%CVE-2025-54511MEDIUMImproper handling of insufficient privileges in the AMD Secure Processor (ASP) could allow an attacker to provide an input value to a functiEPSS 0.2%CVE-2021-26364Insufficient bounds checking in an SMU mailbox register could allow an attacker to potentially read outside of the SRAM address range which EPSS 0.2%CVE-2023-20519A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's EPSS 0.2%CVE-2023-20565Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local EPSS 0.2%CVE-2023-20563HIGHInsufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local EPSS 0.2%CVE-2024-21924HIGHSMM callout vulnerability within the AmdPlatformRasSspSmm driver could allow a ring 0 attacker to modify boot services handlers, potentiallyEPSS 0.2%CVE-2021-26351Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA (Direct Memory Access) read/write from/to invalid DEPSS 0.2%CVE-2025-29943MEDIUMWrite what were condition within AMD CPUs may allow an admin-privileged attacker to modify the configuration of the CPU pipeline potentiallyEPSS 0.2%CVE-2024-21935MEDIUMImproper input validation in Satellite Management Controller (SMC) may allow an attacker with privileges to manipulate Redfish® API commandsEPSS 0.2%CVE-2023-31356MEDIUMIncomplete system memory cleanup in SEV firmware could allow a privileged attacker to corrupt guest private memory, potentially resulting inEPSS 0.2%CVE-2024-21925HIGHImproper input validation within the AmdPspP2CmboxV2 driver may allow a privileged attacker to overwrite SMRAM, leading to arbitrary code exEPSS 0.2%