What is the severity of CVE-2021-46771?

The severity of CVE-2021-46771 is high with a severity value of 7.8.

How can CVE-2021-46771 potentially be exploited?

CVE-2021-46771 can potentially be exploited through arbitrary code execution by a compromised user application.

Which software versions are affected by CVE-2021-46771?

The affected software versions of CVE-2021-46771 are Amd Epyc 7763 Firmware (up to exclusive version milanpi-sp3_1.0.0.4) and Amd Epyc 7713p Firmware (up to exclusive version milanpi-sp3_1.0.0.4).

How can I fix CVE-2021-46771?

To fix CVE-2021-46771, it is recommended to apply the necessary patches and updates provided by AMD.

Where can I find more information about CVE-2021-46771?

More information about CVE-2021-46771 can be found on the AMD Product Security Bulletin at the following link: [AMD Product Security Bulletin](https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021).

Vulnerability/
CVE-2021-46771

high

7.8

CWE

10/5/2022

17/9/2024

CVE-2021-46771: Input Validation

First published: Tue May 10 2022(Updated: )

Insufficient validation of addresses in AMD Secure Processor (ASP) firmware system call may potentially lead to arbitrary code execution by a compromised user application.

Credit: psirt@amd.com

Affected Software	Affected Version	How to fix
Amd Epyc 7763 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7763
Amd Epyc 7713p Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7713p
Amd Epyc 7713 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7713
Amd Epyc 7663 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7663
Amd Epyc 7643 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7643
Amd Epyc 75f3 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 75f3
Amd Epyc 7543p Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7543p
Amd Epyc 7543 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7543
Amd Epyc 7513 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7513
Amd Epyc 7453 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7453
Amd Epyc 74f3 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 74f3
Amd Epyc 7443p Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7443p
Amd Epyc 7443 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7443
Amd Epyc 7413 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7413
Amd Epyc 73f3 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 73f3
Amd Epyc 7343 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7343
Amd Epyc 7313p Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7313p
Amd Epyc 7313 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7313
Amd Epyc 72f3 Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 72f3
Amd Epyc 7773x Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7773x
Amd Epyc 7473x Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7473x
Amd Epyc 7573x Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7573x
Amd Epyc 7373x Firmware	<milanpi-sp3_1.0.0.4
Amd Epyc 7373x

Never miss a vulnerability like this again

Reference Links

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021

Frequently Asked Questions

What is the severity of CVE-2021-46771?
The severity of CVE-2021-46771 is high with a severity value of 7.8.
How can CVE-2021-46771 potentially be exploited?
CVE-2021-46771 can potentially be exploited through arbitrary code execution by a compromised user application.
Which software versions are affected by CVE-2021-46771?
The affected software versions of CVE-2021-46771 are Amd Epyc 7763 Firmware (up to exclusive version milanpi-sp3_1.0.0.4) and Amd Epyc 7713p Firmware (up to exclusive version milanpi-sp3_1.0.0.4).
How can I fix CVE-2021-46771?
To fix CVE-2021-46771, it is recommended to apply the necessary patches and updates provided by AMD.
Where can I find more information about CVE-2021-46771?
More information about CVE-2021-46771 can be found on the AMD Product Security Bulletin at the following link: [AMD Product Security Bulletin](https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021).