CVE-2018-8932
First published: Thu Mar 22 2018(Updated: )
The AMD Ryzen and Ryzen Pro processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-2, RYZENFALL-3, and RYZENFALL-4.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Amd Ryzen Pro Firmware | ||
| AMD Ryzen Pro | ||
| AMD Ryzen Firmware | ||
| AMD CPUs |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-8932?
CVE-2018-8932 is considered a critical vulnerability due to insufficient access control in the Secure Processor of AMD Ryzen and Ryzen Pro chips.
How do I fix CVE-2018-8932?
To address CVE-2018-8932, it is recommended to install the firmware updates provided by AMD for affected Ryzen and Ryzen Pro processors.
What types of systems are affected by CVE-2018-8932?
CVE-2018-8932 affects systems using AMD Ryzen and Ryzen Pro processor chips that utilize the vulnerable firmware.
What potential impacts does CVE-2018-8932 have on security?
CVE-2018-8932 could allow unauthorized access to sensitive information on compromised AMD processors, impacting system integrity and confidentiality.
Are all AMD Ryzen processors vulnerable to CVE-2018-8932?
Not all AMD Ryzen processors are vulnerable; only certain models with specific firmware versions are affected by CVE-2018-8932.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/softwarecombine
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/amd
- canonical/amd ryzen pro firmware
- canonical/amd ryzen pro
- canonical/amd ryzen firmware
- canonical/amd cpus