First published: Tue Jan 10 2023(Updated: )
Insufficient input validation in SYS_KEY_DERIVE system call in a compromised user application or ABL may allow an attacker to corrupt ASP (AMD Secure Processor) OS memory which may lead to potential arbitrary code execution.
Credit: psirt@amd.com
Affected Software | Affected Version | How to fix |
---|---|---|
AMD EPYC 7H12 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7H12 Firmware | ||
AMD EPYC 7F72 | <romepi_1.0.0.c | |
AMD EPYC 7F72 Firmware | ||
AMD EPYC 7F52 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7F52 Firmware | ||
AMD EPYC 7F32 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7F32 Firmware | ||
AMD EPYC 7742 Firmware | <romepi_1.0.0.c | |
AMD EPYC Server | ||
AMD EPYC 7702 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7702P | ||
AMD EPYC 7702p firmware | <romepi_1.0.0.c | |
AMD EPYC Server | ||
AMD EPYC 7662 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7662 Firmware | ||
AMD EPYC 7642 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7642 Firmware | ||
AMD EPYC 7552 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7552 Firmware | ||
AMD EPYC 7542 Firmware | <romepi_1.0.0.c | |
AMD EPYC Server | ||
AMD EPYC 7532 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7532 Firmware | ||
AMD EPYC 7502P Firmware | <romepi_1.0.0.c | |
AMD EPYC 7502P Firmware | ||
AMD EPYC 7502 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7502 firmware | ||
AMD EPYC 7452 Firmware | <romepi_1.0.0.c | |
AMD EPYC Server | ||
Amd Epyc Server Firmware | <romepi_1.0.0.c | |
AMD EPYC 7402 Firmware | ||
AMD EPYC 7402P Firmware | <romepi_1.0.0.c | |
AMD EPYC 7402P Firmware | ||
AMD EPYC Firmware | <romepi_1.0.0.c | |
AMD EPYC 7352 firmware | ||
AMD EPYC 7302P Firmware | <romepi_1.0.0.c | |
AMD EPYC 7302P Firmware | ||
Amd Epyc Server Firmware | <romepi_1.0.0.c | |
AMD EPYC 7302 Firmware | ||
AMD EPYC 7282 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7282 Firmware | ||
AMD EPYC 7272 firmware | <romepi_1.0.0.c | |
AMD EPYC 7272 firmware | ||
AMD EPYC 7262 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7262 Firmware | ||
AMD EPYC 7252 Firmware | <romepi_1.0.0.c | |
AMD EPYC 7252 Firmware | ||
AMD EPYC 7232p firmware | <romepi_1.0.0.c | |
AMD EPYC 7232p firmware | ||
AMD EPYC 7002 Firmware | <romepi_1.0.0.c | |
AMD EPYC Server | ||
AMD EPYC 7003 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7003 Firmware | ||
AMD EPYC 72F3 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 72F3 Firmware | ||
AMD EPYC Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7313 Firmware | ||
AMD EPYC 7313P Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7313P Firmware | ||
Amd Epyc Server Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7343 Firmware | ||
AMD EPYC 7373X Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7373X Firmware | ||
AMD EPYC 73F3 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 73F3 Firmware | ||
AMD EPYC 7413 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7413 Firmware | ||
AMD EPYC 7443P Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7443P | ||
AMD EPYC 7443P Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7443P Firmware | ||
Amd Epyc Server Firmware | <milanpi_1.0.0.4 | |
AMD EPYC Server | ||
AMD EPYC 74F3 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 74F3 Firmware | ||
AMD EPYC 7513 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7513 Firmware | ||
Amd Epyc Server Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7543 Firmware | ||
AMD EPYC 7543P Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7543P Firmware | ||
AMD EPYC 7573X Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7573X Firmware | ||
AMD EPYC 75F3 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 75F3 Firmware | ||
AMD EPYC 7643P Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7643 Firmware | ||
AMD EPYC 7663 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7663 Firmware | ||
AMD EPYC 7713P Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7713 Firmware | ||
AMD EPYC 7713P Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7713P Firmware | ||
AMD EPYC 7743 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7743 Firmware | ||
AMD EPYC 7763 Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7763 Firmware | ||
AMD EPYC 7773X Firmware | <milanpi_1.0.0.4 | |
AMD EPYC 7773X Firmware | ||
Amd Epyc Server Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7001 Firmware | ||
AMD EPYC 7251 Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7251 Firmware | ||
AMD EPYC 7261 Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7261 | ||
Amd Epyc Server Firmware | <naplespi_1.0.0.h | |
AMD EPYC Server | ||
Amd Epyc Server Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7301 Firmware | ||
AMD EPYC 7351P Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7351 Firmware | ||
AMD EPYC 7371 Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7371 Firmware | ||
AMD EPYC 7401P Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7401 Firmware | ||
AMD EPYC 7401P Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7401P Firmware | ||
AMD EPYC 7451 Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7451 Firmware | ||
AMD EPYC 7501 Firmware | <naplespi_1.0.0.h | |
AMD EPYC Server | ||
AMD EPYC 7551P Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7551 Firmware | ||
AMD EPYC 7551P Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7551P Firmware | ||
AMD EPYC 7601 Firmware | <naplespi_1.0.0.h | |
AMD EPYC 7601 Firmware |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2021-26398 is considered high due to potential arbitrary code execution leading to security breaches.
To fix CVE-2021-26398, update the affected Amd Epyc firmware to a version later than romepi_1.0.0.c or milanpi_1.0.0.4.
CVE-2021-26398 affects specific versions of the Amd Epyc 7h12, 7f72, 7f52, and various other Amd Epyc firmware versions.
An attacker exploiting CVE-2021-26398 could corrupt ASP OS memory, potentially leading to arbitrary code execution.
Check the firmware version of your Amd Epyc processors against the vulnerable versions listed in the CVE-2021-26398 advisory.