high
7.8
CWE
125 787
Advisory Published
Updated

CVE-2021-26384

First published: Thu Jul 14 2022(Updated: )

A malformed SMI (System Management Interface) command may allow an attacker to establish a corrupted SMI Trigger Info data structure, potentially leading to out-of-bounds memory reads and writes when triggering an SMI resulting in a potential loss of resources.

Credit: psirt@amd.com

Affected SoftwareAffected VersionHow to fix
AMD Ryzen 7 5700G Firmware<comboam4_v2_pi_1.2.0.6c
AMD Ryzen 7 5700G Firmware
AMD Ryzen 7 5700GE Firmware<comboam4_v2_pi_1.2.0.6c
AMD Ryzen 7 5700GE Firmware
AMD Ryzen 5 5600G Firmware<comboam4_v2_pi_1.2.0.6c
AMD Ryzen 5 5600GT Firmware
AMD Ryzen 5 5600GE Firmware<comboam4_v2_pi_1.2.0.6c
AMD Ryzen 5 5600GE Firmware
AMD Ryzen 3 5300G Firmware<comboam4_v2_pi_1.2.0.6c
AMD Ryzen 3 5300G Firmware
AMD Ryzen 3 5300GE Firmware<comboam4_v2_pi_1.2.0.6c
AMD Ryzen 3 5300GE Firmware
AMD Ryzen 9 5980HX<cezannepi-fp6_1.0.0.9
AMD Ryzen 9 5980HX Firmware
AMD Ryzen 9 5980HS Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 9 5980HS Firmware
AMD Ryzen 7 5825U Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 7 5825U Firmware
AMD Ryzen 9 5900HX Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 9 5900HX
AMD Ryzen 9 5900HS Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 9 5900HS Firmware
amd ryzen 7 5825c firmware<cezannepi-fp6_1.0.0.9
amd ryzen 7 5825c
AMD Ryzen 7 5800H Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 7 5800H Firmware
AMD Ryzen 5 5625U Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 5 5625U Firmware
AMD Ryzen 7 5800HS Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 7 5800HS Firmware
amd ryzen 5 5625c firmware<cezannepi-fp6_1.0.0.9
amd ryzen 5 5625c
AMD Ryzen 5 5600H Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 5 5600H
AMD Ryzen 5 5600HS Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 5 5600HS
AMD Ryzen 7 5800U Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 7 5800U Firmware
AMD Ryzen 5 5600U Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 5 5600U
AMD Ryzen 5 5560U Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 5 5560U Firmware
AMD Ryzen 3 5425U<cezannepi-fp6_1.0.0.9
AMD Ryzen 3 5425U
amd ryzen 3 5425c firmware<cezannepi-fp6_1.0.0.9
amd ryzen 3 5425c
AMD Ryzen 3 5400U Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 3 5400U
AMD Ryzen 3 5125C Firmware<cezannepi-fp6_1.0.0.9
AMD Ryzen 3 5125C
AMD Athlon Silver 3050U firmware
AMD Athlon Silver 3050U firmware
AMD Athlon Gold 3150U Firmware
AMD Athlon Gold 3150U
AMD Ryzen 3 3200U Firmware
AMD Ryzen 3 3200U Firmware
AMD Ryzen 3 3250U Firmware
AMD Ryzen 3 3250U Firmware
AMD Ryzen 3 Pro 3300U Firmware
AMD Ryzen 3 Pro 3300U
amd ryzen 3 3350u firmware
amd ryzen 3 3350u
amd ryzen 3 3450u firmware
amd ryzen 3 3450u
amd ryzen 3 3500u firmware
amd ryzen 3 3500u
amd ryzen 3 3500c firmware
amd ryzen 3 3500c
amd ryzen 3 3550h firmware
amd ryzen 3 3550h
amd ryzen 3 3580u firmware
amd ryzen 3 3580u
amd ryzen 3 3700u firmware
amd ryzen 3 3700u
amd ryzen 3 3700c firmware
amd ryzen 3 3700c
amd ryzen 3 3750h firmware
amd ryzen 3 3750h
amd ryzen 3 3780u firmware
amd ryzen 3 3780u
AMD Ryzen 3 2200U Firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 3 2200U Firmware
AMD Ryzen 3 2300U Firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 3 2300U
AMD Ryzen 5 2500U Firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 5 2500U
AMD Ryzen 5 2600X<comboam4v2_pi_1.2.0.6c
AMD Ryzen 5 2600
AMD Ryzen 5 2600H Firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 5 2600H
AMD Ryzen 5 2600X<comboam4v2_pi_1.2.0.6c
AMD Ryzen 5 2600X
AMD Ryzen 5 2700 firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 5 2700
AMD Ryzen 5 2700X Firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 5 2700X
AMD Ryzen 7 2700 Firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 7 2700 Firmware
AMD Ryzen 7 2700U Firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 7 2700U Firmware
AMD Ryzen 7 2700X<comboam4v2_pi_1.2.0.6c
AMD Ryzen 7 2700X
AMD Ryzen 7 2800H Firmware<comboam4v2_pi_1.2.0.6c
AMD Ryzen 7 2800H Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2021-26384?

    CVE-2021-26384 has a severity rating that suggests it may lead to potential out-of-bounds memory reads and writes.

  • How do I fix CVE-2021-26384?

    To mitigate CVE-2021-26384, it is recommended to update the firmware to the latest version provided by AMD.

  • Which AMD products are affected by CVE-2021-26384?

    CVE-2021-26384 affects specific AMD Ryzen and Athlon firmware versions, particularly those prior to comboam4_v2_pi_1.2.0.6c.

  • What are the potential consequences of CVE-2021-26384?

    The consequences of CVE-2021-26384 may include out-of-bounds memory accesses that could lead to resource loss.

  • Is CVE-2021-26384 actively exploited?

    There is no current indication that CVE-2021-26384 is actively being exploited in the wild.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203