Filters

Amd Epyc 9654p FirmwareSMM configuration may not be immutable, as intended, when SNP is enabled resulting in a potential li…

medium
5.3
First published (updated )
CVE-2022-23830

Amd Epyc 7h12 FirmwareFailure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token …

medium
4.9
First published (updated )
CVE-2021-26345

Amd Epyc 7001 FirmwareInput Validation

medium
4.6
First published (updated )
CVE-2023-20526

Amd Epyc 7001 FirmwareTOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM recor…

medium
5.7
First published (updated )
CVE-2023-20521

Amd Epyc 7001 FirmwareImproper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with …

medium
6.5
First published (updated )
CVE-2023-20592

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amd Ryzen 3 3100 Firmware Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitiv…

medium
4.4
First published (updated )
CVE-2023-20594

Amd Epyc 7251 Firmware A potential power side-channel vulnerability in some AMD processors may allow an authenticated atta…

medium
6.5
First published (updated )
CVE-2023-20575

Microsoft Windows 10Xen Security Advisory 434 v1 (CVE-2023-20569) - x86/AMD: Speculative Return Stack Overflow

medium
4.7
First published (updated )
CVE-2023-20569

Amd Epyc 7773x FirmwareA compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may …

medium
5.5
First published (updated )
CVE-2021-26371

Amd Epyc 7773x FirmwareInsufficient bounds checking in ASP may allow an attacker to issue a system call from a compromised …

medium
5.5
First published (updated )
CVE-2021-26354

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amd Epyc 72f3 FirmwareInput Validation

medium
6.8
First published (updated )
CVE-2021-46775

Amd Epyc 7h12 FirmwareInput Validation

medium
5.3
First published (updated )
CVE-2023-20532

Amd Epyc 7h12 FirmwareInput Validation

medium
6.5
First published (updated )
CVE-2023-20527

Amd Epyc 7h12 FirmwareInput Validation

medium
6.5
First published (updated )
CVE-2023-20525

Amd Epyc 7h12 FirmwareTOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leadi…

medium
5.7
First published (updated )
CVE-2023-20523

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amd Epyc 7003 FirmwareInput Validation

medium
5.5
First published (updated )
CVE-2021-26404

Amd Epyc 7003 FirmwareInsufficient validation of address mapping to IO in ASP (AMD Secure Processor) may result in a loss …

medium
4.4
First published (updated )
CVE-2021-26396

Amd Epyc 7003 FirmwareInsufficient fencing and checks in System Management Unit (SMU) may result in access to invalid mess…

medium
5.5
First published (updated )
CVE-2021-26355

Amd Epyc 7003 FirmwareInsufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to…

medium
5.5
First published (updated )
CVE-2021-26343

Amd Epyc 7003 FirmwareFailure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of …

medium
4.4
First published (updated )
CVE-2021-26328

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Xen XenIBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leadi…

medium
5.5
First published (updated )
CVE-2022-23824

Amd Athlon 3050ge FirmwareExecution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microa…

medium
5.6
First published (updated )
CVE-2021-46778

Amd Epyc 7763 FirmwareFailure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) ma…

medium
5.5
First published (updated )
CVE-2021-26348

Amd Epyc 7763 FirmwareInteger Overflow

medium
4.7
First published (updated )
CVE-2021-26347

Amd Epyc 7763 FirmwareA bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM…

medium
5.5
First published (updated )
CVE-2021-26339

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amd Epyc 7763 FirmwareFailure to assign a new report ID to an imported guest may potentially result in an SEV-SNP guest VM…

medium
5.5
First published (updated )
CVE-2021-26349

Amd Epyc 7001 FirmwareAn attacker with access to a malicious hypervisor may be able to infer data values used in a SEV gue…

medium
6.5
First published (updated )
CVE-2021-46744

Amd Epyc 7003 FirmwareInsufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from i…

medium
5.5
First published (updated )
CVE-2021-26337

Amd Epyc 7232p FirmwareInput Validation

medium
5.5
First published (updated )
CVE-2021-26325

Amd Epyc 7601 FirmwareFailure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) ma…

medium
5.5
First published (updated )
CVE-2021-26312

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amd Epyc 7601 FirmwareCommand Injection, Input Validation

medium
5.5
First published (updated )
CVE-2021-26321

Amd Epyc 7003 FirmwareBuffer Overflow

medium
5.5
First published (updated )
CVE-2021-26336

Amd Epyc 7003 FirmwareA side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI RO…

medium
5.5
First published (updated )
CVE-2020-12954

Amd Epyc 7003 FirmwareInput Validation

medium
5.5
First published (updated )
CVE-2021-26327

Amd Epyc 7003 FirmwareAMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of …

medium
5.5
First published (updated )
CVE-2021-26330

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Amd Epyc 7601 FirmwareInsufficient validation of the AMD SEV Signing Key (ASK) in the SEND_START command in the SEV Firmwa…

medium
5.5
First published (updated )
CVE-2021-26320

Amd Epyc 7601 FirmwareInteger Overflow

medium
5.5
First published (updated )
CVE-2021-26329

Amd Epyc 7763 FirmwareInfoleak

medium
5.5
First published (updated )
CVE-2020-12966

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203