CVE-2020-12961: Input Validation
First published: Tue Nov 16 2021(Updated: )
A potential vulnerability exists in AMD Platform Security Processor (PSP) that may allow an attacker to zero any privileged register on the System Management Network which may lead to bypassing SPI ROM protections.
Credit: psirt@amd.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| AMD EPYC 7003 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7003 Firmware | ||
| AMD EPYC 7002 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC Server | ||
| AMD EPYC 72F3 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 72F3 Firmware | ||
| AMD EPYC Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7313 Firmware | ||
| AMD EPYC 7313P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7313P Firmware | ||
| Amd Epyc Server Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7343 Firmware | ||
| AMD EPYC 73F3 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 73F3 Firmware | ||
| AMD EPYC 7413 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7413 Firmware | ||
| AMD EPYC 7443P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7443P | ||
| AMD EPYC 7443P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7443P Firmware | ||
| Amd Epyc Server Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC Server | ||
| AMD EPYC 74F3 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 74F3 Firmware | ||
| AMD EPYC 7513 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7513 Firmware | ||
| Amd Epyc Server Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7543 Firmware | ||
| AMD EPYC 7543P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7543P Firmware | ||
| AMD EPYC 75F3 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 75F3 Firmware | ||
| AMD EPYC 7643P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7643 Firmware | ||
| AMD EPYC 7663 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7663 Firmware | ||
| AMD EPYC 7713P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7713 Firmware | ||
| AMD EPYC 7713P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7713P Firmware | ||
| AMD EPYC 7763 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7763 Firmware | ||
| AMD EPYC 7232p firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7232p firmware | ||
| AMD EPYC 7252 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7252 Firmware | ||
| AMD EPYC 7262 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7262 Firmware | ||
| AMD EPYC 7272 firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7272 firmware | ||
| AMD EPYC 7282 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7282 Firmware | ||
| Amd Epyc Server Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7302 Firmware | ||
| AMD EPYC 7302P Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7302P Firmware | ||
| AMD EPYC Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7352 firmware | ||
| Amd Epyc Server Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7402 Firmware | ||
| AMD EPYC 7402P Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7402P Firmware | ||
| AMD EPYC 7452 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC Server | ||
| AMD EPYC 7502 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7502 firmware | ||
| AMD EPYC 7502P Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7502P Firmware | ||
| AMD EPYC 7532 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7532 Firmware | ||
| AMD EPYC 7542 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC Server | ||
| AMD EPYC 7552 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7552 Firmware | ||
| AMD EPYC 7642 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7642 Firmware | ||
| AMD EPYC 7662 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7662 Firmware | ||
| AMD EPYC 7702p firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC Server | ||
| AMD EPYC 7702 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7702P | ||
| AMD EPYC 7742 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC Server | ||
| AMD EPYC 7F32 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7F32 Firmware | ||
| AMD EPYC 7F52 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7F52 Firmware | ||
| AMD EPYC 7F72 | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7F72 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2020-12961?
CVE-2020-12961 is classified as a potential security vulnerability which may compromise system integrity.
How do I fix CVE-2020-12961?
To mitigate CVE-2020-12961, users should update to the latest firmware version provided by AMD.
Which AMD products are affected by CVE-2020-12961?
CVE-2020-12961 affects specific AMD Epyc 7003 and 7002 firmware versions prior to milanpi-sp3_1.0.0.4 and romepi-sp3_1.0.0.c.
What impact does CVE-2020-12961 have on system security?
CVE-2020-12961 may allow an attacker to bypass certain security protections, potentially compromising sensitive system components.
Is there a patch available for CVE-2020-12961?
Yes, AMD has released firmware updates to address the security issues outlined in CVE-2020-12961.
- agent/type
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/softwarecombine
- vendor/amd
- canonical/amd epyc 7003 firmware
- canonical/amd epyc 7002 firmware
- canonical/amd epyc server
- canonical/amd epyc 72f3 firmware
- canonical/amd epyc firmware
- canonical/amd epyc 7313 firmware
- canonical/amd epyc 7313p firmware
- canonical/amd epyc server firmware
- canonical/amd epyc 7343 firmware
- canonical/amd epyc 73f3 firmware
- canonical/amd epyc 7413 firmware
- canonical/amd epyc 7443p firmware
- canonical/amd epyc 7443p
- canonical/amd epyc 74f3 firmware
- canonical/amd epyc 7513 firmware
- canonical/amd epyc 7543 firmware
- canonical/amd epyc 7543p firmware
- canonical/amd epyc 75f3 firmware
- canonical/amd epyc 7643p firmware
- canonical/amd epyc 7643 firmware
- canonical/amd epyc 7663 firmware
- canonical/amd epyc 7713p firmware
- canonical/amd epyc 7713 firmware
- canonical/amd epyc 7763 firmware
- canonical/amd epyc 7232p firmware
- canonical/amd epyc 7252 firmware
- canonical/amd epyc 7262 firmware
- canonical/amd epyc 7272 firmware
- canonical/amd epyc 7282 firmware
- canonical/amd epyc 7302 firmware
- canonical/amd epyc 7302p firmware
- canonical/amd epyc 7352 firmware
- canonical/amd epyc 7402 firmware
- canonical/amd epyc 7402p firmware
- canonical/amd epyc 7452 firmware
- canonical/amd epyc 7502 firmware
- canonical/amd epyc 7502p firmware
- canonical/amd epyc 7532 firmware
- canonical/amd epyc 7542 firmware
- canonical/amd epyc 7552 firmware
- canonical/amd epyc 7642 firmware
- canonical/amd epyc 7662 firmware
- canonical/amd epyc 7702p firmware
- canonical/amd epyc 7702 firmware
- canonical/amd epyc 7702p
- canonical/amd epyc 7742 firmware
- canonical/amd epyc 7f32 firmware
- canonical/amd epyc 7f52 firmware
- canonical/amd epyc 7f72
- canonical/amd epyc 7f72 firmware