CVE-2021-26335
First published: Tue Nov 16 2021(Updated: )
Improper input and range checking in the AMD Secure Processor (ASP) boot loader image header may allow an attacker to use attacker-controlled values prior to signature validation potentially resulting in arbitrary code execution.
Credit: psirt@amd.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Amd Epyc Server Firmware | <milanpi-sp3_1.0.0.4 | |
| amd epyc 7003 | ||
| AMD EPYC 7002 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7002 | ||
| Amd Epyc Server Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7001 | ||
| AMD EPYC 72F3 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 72F3 Firmware | ||
| Amd Epyc Server Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7313P | ||
| AMD EPYC 7313P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7313P | ||
| Amd Epyc Server Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7343 | ||
| AMD EPYC 73F3 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 73F3 | ||
| AMD EPYC 7413 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7413 Firmware | ||
| AMD EPYC 7443 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7443 | ||
| AMD EPYC 7443P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7443P | ||
| Amd Epyc Server Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7453 | ||
| AMD EPYC 74F3 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 74F3 | ||
| AMD EPYC 7513 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7513 | ||
| Amd Epyc Server Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7543 Firmware | ||
| AMD EPYC 7543P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7543P Firmware | ||
| AMD EPYC 75F3 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 75F3 | ||
| AMD EPYC 7643 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7643 | ||
| AMD EPYC 7663 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7663 Firmware | ||
| AMD EPYC 7713P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7713 | ||
| AMD EPYC 7713P Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7713P Firmware | ||
| AMD EPYC 7763 Firmware | <milanpi-sp3_1.0.0.4 | |
| AMD EPYC 7763 Firmware | ||
| AMD EPYC 7232p firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7232p firmware | ||
| AMD EPYC 7252 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7252 Firmware | ||
| AMD EPYC 7262 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7262 Firmware | ||
| AMD EPYC 7272 firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7272 firmware | ||
| AMD EPYC 7282 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7282 | ||
| Amd Epyc Server Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7302P | ||
| AMD EPYC 7302P Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7302P | ||
| AMD EPYC 7352 firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7352 | ||
| Amd Epyc Server Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7402 | ||
| AMD EPYC 7402P Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7402P | ||
| AMD EPYC 7452 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7452 | ||
| Amd Epyc Server Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7502 | ||
| AMD EPYC 7502P Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7502P | ||
| AMD EPYC 7532 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7532 | ||
| AMD EPYC 7542 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7542 | ||
| AMD EPYC 7552 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC Embedded 7552 | ||
| AMD EPYC 7642 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7642 Firmware | ||
| AMD EPYC 7662 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7662 | ||
| AMD EPYC 7702 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7702 | ||
| AMD EPYC 7702 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7702p | ||
| AMD EPYC 7742 firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7742 firmware | ||
| AMD EPYC 7F32 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7F32 Firmware | ||
| AMD EPYC 7F52 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7F52 | ||
| AMD EPYC 7F72 Firmware | <romepi-sp3_1.0.0.c | |
| AMD EPYC 7F72 | ||
| AMD EPYC 7251 Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7251 | ||
| Amd Epyc Server Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7281 Firmware | ||
| Amd Epyc Server Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7301 Firmware | ||
| AMD EPYC 7351P Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7351P Firmware | ||
| AMD EPYC 7351P Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7351P Firmware | ||
| Amd Epyc Server Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7401 | ||
| AMD EPYC 7401P Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7401P | ||
| AMD EPYC 7451 Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7451 Firmware | ||
| AMD EPYC 7501 firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7501 | ||
| Amd Epyc Server Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7551 Firmware | ||
| AMD EPYC 7551P Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7551P Firmware | ||
| AMD EPYC 7601 Firmware | <naplespi-sp3_1.0.0.g | |
| AMD EPYC 7601 Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2021-26335?
CVE-2021-26335 is rated as a high severity vulnerability due to the potential for arbitrary code execution.
How do I fix CVE-2021-26335?
To fix CVE-2021-26335, update the AMD EPYC firmware to a version that is not vulnerable, specifically those newer than milanpi-sp3_1.0.0.4.
What products are affected by CVE-2021-26335?
CVE-2021-26335 affects AMD EPYC 7003, 7002, and 7001 firmware versions earlier than the specified fixed releases.
What type of attack can leverage CVE-2021-26335?
An attacker can exploit CVE-2021-26335 to execute arbitrary code by providing controlled values prior to signature validation in the AMD Secure Processor.
Is CVE-2021-26335 remotely exploitable?
CVE-2021-26335 requires local access to the system for exploitation, making it less of a risk for remote attacks.
- agent/type
- agent/severity
- agent/author
- agent/references
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/amd
- canonical/amd epyc server firmware
- canonical/amd epyc 7003
- canonical/amd epyc 7002 firmware
- canonical/amd epyc 7002
- canonical/amd epyc 7001
- canonical/amd epyc 72f3 firmware
- canonical/amd epyc 7313p
- canonical/amd epyc 7313p firmware
- canonical/amd epyc 7343
- canonical/amd epyc 73f3 firmware
- canonical/amd epyc 73f3
- canonical/amd epyc 7413 firmware
- canonical/amd epyc 7443 firmware
- canonical/amd epyc 7443
- canonical/amd epyc 7443p firmware
- canonical/amd epyc 7443p
- canonical/amd epyc 7453
- canonical/amd epyc 74f3 firmware
- canonical/amd epyc 74f3
- canonical/amd epyc 7513 firmware
- canonical/amd epyc 7513
- canonical/amd epyc 7543 firmware
- canonical/amd epyc 7543p firmware
- canonical/amd epyc 75f3 firmware
- canonical/amd epyc 75f3
- canonical/amd epyc 7643 firmware
- canonical/amd epyc 7643
- canonical/amd epyc 7663 firmware
- canonical/amd epyc 7713p firmware
- canonical/amd epyc 7713
- canonical/amd epyc 7763 firmware
- canonical/amd epyc 7232p firmware
- canonical/amd epyc 7252 firmware
- canonical/amd epyc 7262 firmware
- canonical/amd epyc 7272 firmware
- canonical/amd epyc 7282 firmware
- canonical/amd epyc 7282
- canonical/amd epyc 7302p
- canonical/amd epyc 7302p firmware
- canonical/amd epyc 7352 firmware
- canonical/amd epyc 7352
- canonical/amd epyc 7402
- canonical/amd epyc 7402p firmware
- canonical/amd epyc 7402p
- canonical/amd epyc 7452 firmware
- canonical/amd epyc 7452
- canonical/amd epyc 7502
- canonical/amd epyc 7502p firmware
- canonical/amd epyc 7502p
- canonical/amd epyc 7532 firmware
- canonical/amd epyc 7532
- canonical/amd epyc 7542 firmware
- canonical/amd epyc 7542
- canonical/amd epyc 7552 firmware
- canonical/amd epyc embedded 7552
- canonical/amd epyc 7642 firmware
- canonical/amd epyc 7662 firmware
- canonical/amd epyc 7662
- canonical/amd epyc 7702 firmware
- canonical/amd epyc 7702
- canonical/amd epyc 7702p
- canonical/amd epyc 7742 firmware
- canonical/amd epyc 7f32 firmware
- canonical/amd epyc 7f52 firmware
- canonical/amd epyc 7f52
- canonical/amd epyc 7f72 firmware
- canonical/amd epyc 7f72
- canonical/amd epyc 7251 firmware
- canonical/amd epyc 7251
- canonical/amd epyc 7281 firmware
- canonical/amd epyc 7301 firmware
- canonical/amd epyc 7351p firmware
- canonical/amd epyc 7401
- canonical/amd epyc 7401p firmware
- canonical/amd epyc 7401p
- canonical/amd epyc 7451 firmware
- canonical/amd epyc 7501 firmware
- canonical/amd epyc 7501
- canonical/amd epyc 7551 firmware
- canonical/amd epyc 7551p firmware
- canonical/amd epyc 7601 firmware