Filters
Amd Epyc 7763 FirmwareDebug Exception Delivery in Secure Nested Paging
3.2
First published (updated )
Amd Epyc 7763 FirmwareImproper address validation in ASP with SNP enabled may potentially allow an attacker to compromise …
7.5
First published (updated )
Amd Epyc 9654p FirmwareSMM configuration may not be immutable, as intended, when SNP is enabled resulting in a potential li…
5.3
First published (updated )
Amd Epyc 7h12 FirmwareFailure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token …
4.9
First published (updated )
Amd Ryzen Threadripper Pro 3995wx FirmwareInsufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/w…
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Amd Epyc 7001 FirmwareTOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM recor…
5.7
First published (updated )
Amd Epyc 7001 FirmwareInsufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/w…
7.5
First published (updated )
Amd Epyc 7001 FirmwareImproper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with …
6.5
First published (updated )
Amd Ryzen 3 3100 Firmware Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitiv…
4.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Amd Epyc 7251 Firmware A potential power side-channel vulnerability in some AMD processors may allow an authenticated atta…
6.5
First published (updated )
Microsoft Windows 10Xen Security Advisory 434 v1 (CVE-2023-20569) - x86/AMD: Speculative Return Stack Overflow
4.7
First published (updated )
Amd Epyc 7773x FirmwareA compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may …
5.5
First published (updated )
Amd Epyc 7001 FirmwareA TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read to m…
7.4
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Amd Epyc 7773x FirmwareInsufficient bounds checking in ASP may allow an attacker to issue a system call from a compromised …
5.5
First published (updated )
Amd Epyc 72f3 FirmwareAn attacker with a compromised ASP could possibly send malformed commands to an ASP on another CPU, …
7.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Amd Epyc 72f3 FirmwareImproper validation of DRAM addresses in SMU may allow an attacker to overwrite sensitive memory loc…
7.5
First published (updated )
Amd Epyc 72f3 FirmwareInsufficient address validation, may allow an attacker with a compromised ABL and UApp to corrupt se…
7.1
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Amd Epyc 7h12 FirmwareTOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leadi…
5.7
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Amd Epyc 7h12 FirmwareInsufficient bounds checking in ASP (AMD Secure Processor) firmware while handling BIOS mailbox comm…
7.1
First published (updated )
Amd Epyc 7003 FirmwareInsufficient validation of address mapping to IO in ASP (AMD Secure Processor) may result in a loss …
4.4
First published (updated )
Amd Epyc 7003 FirmwareInsufficient fencing and checks in System Management Unit (SMU) may result in access to invalid mess…
5.5
First published (updated )
Amd Epyc 7003 FirmwareInsufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to…
5.5
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Amd Epyc 7003 FirmwareFailure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of …
4.4
First published (updated )
Xen XenIBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leadi…
5.5
First published (updated )
Amd Athlon 3050ge FirmwareExecution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microa…
5.6
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Amd Epyc 7763 FirmwareFailure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRT…
7.8
First published (updated )
Amd Epyc 7763 FirmwareA bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM…
5.5
First published (updated )
Amd Epyc 7763 FirmwareFailure to assign a new report ID to an imported guest may potentially result in an SEV-SNP guest VM…
5.5
First published (updated )
Amd Epyc 7763 FirmwareFailure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) ma…
5.5
First published (updated )
Amd Epyc 7763 FirmwareIn SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) following a parti…
3.3
First published (updated )
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.