Filters

Amd Epyc 8024pn FirmwareA TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow an attacker with ring0 privileges and access t…

7.5
First published (updated )

Amd Epyc 7773x FirmwareDue to a code bug in Secure_TSC, SEV firmware may allow an attacker with high privileges to cause a …

First published (updated )

Amd Epyc 7763 FirmwareDebug Exception Delivery in Secure Nested Paging

3.2
First published (updated )

Amd Epyc 7773x FirmwareFailure to initialize memory in SEV Firmware may allow a privileged attacker to access stale data fr…

First published (updated )

Amd Epyc 7763 FirmwareImproper address validation in ASP with SNP enabled may potentially allow an attacker to compromise …

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amd Epyc 9654p FirmwareSMM configuration may not be immutable, as intended, when SNP is enabled resulting in a potential li…

First published (updated )

Amd Epyc 7h12 FirmwareFailure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token …

First published (updated )

Amd Ryzen Threadripper Pro 3995wx FirmwareInsufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/w…

7.5
First published (updated )

Amd Epyc 7001 FirmwareInput Validation

First published (updated )

Amd Epyc 7001 FirmwareTOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM recor…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amd Epyc 7001 FirmwareInsufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/w…

7.5
First published (updated )

Amd Epyc 7001 FirmwareImproper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with …

First published (updated )

Amd Ryzen 3 3100 Firmware Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitiv…

First published (updated )

Amd Epyc 7251 Firmware A potential power side-channel vulnerability in some AMD processors may allow an authenticated atta…

First published (updated )

Microsoft Windows 10Xen Security Advisory 434 v1 (CVE-2023-20569) - x86/AMD: Speculative Return Stack Overflow

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amd Epyc 72f3 FirmwareInput Validation

First published (updated )

Amd Epyc 7773x FirmwareA compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may …

First published (updated )

Amd Epyc 7001 FirmwareA TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read to m…

7.4
First published (updated )

Amd Epyc 7773x FirmwareInsufficient bounds checking in ASP may allow an attacker to issue a system call from a compromised …

First published (updated )

Amd Epyc 72f3 FirmwareAn attacker with a compromised ASP could possibly send malformed commands to an ASP on another CPU, …

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amd Epyc 72f3 FirmwareBuffer Overflow

First published (updated )

Amd Epyc 72f3 FirmwareInput Validation

7.5
First published (updated )

Amd Epyc 72f3 FirmwareInput Validation

First published (updated )

Amd Epyc 72f3 FirmwareInput Validation

8.8
First published (updated )

Amd Epyc 72f3 FirmwareImproper validation of DRAM addresses in SMU may allow an attacker to overwrite sensitive memory loc…

7.5
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amd Epyc 72f3 FirmwareInput Validation

7.5
First published (updated )

Amd Epyc 72f3 FirmwareInput Validation

First published (updated )

Amd Epyc 72f3 FirmwareInsufficient address validation, may allow an attacker with a compromised ABL and UApp to corrupt se…

7.1
First published (updated )

Amd Epyc 72f3 FirmwareInput Validation

First published (updated )

Amd Epyc 7h12 FirmwareInput Validation

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amd Epyc 7h12 FirmwareBuffer Overflow

7.5
First published (updated )

Amd Epyc 7003 FirmwareInput Validation

7.5
First published (updated )

Amd Epyc 7h12 FirmwareBuffer Overflow

7.5
First published (updated )

Amd Epyc 7h12 FirmwareInput Validation

2.4
First published (updated )

Amd Epyc 7h12 FirmwareInput Validation

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amd Epyc 7h12 FirmwareInput Validation

First published (updated )

Amd Epyc 7h12 FirmwareTOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leadi…

First published (updated )

Amd Epyc 7003 FirmwareInput Validation

First published (updated )

Amd Epyc 7h12 FirmwareInsufficient bounds checking in ASP (AMD Secure Processor) firmware while handling BIOS mailbox comm…

7.1
First published (updated )

Amd Epyc 7h12 FirmwareInput Validation

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Amd Epyc 7003 FirmwareInsufficient validation of address mapping to IO in ASP (AMD Secure Processor) may result in a loss …

First published (updated )

Amd Epyc 7003 FirmwareInsufficient fencing and checks in System Management Unit (SMU) may result in access to invalid mess…

First published (updated )

Amd Epyc 7003 FirmwareInsufficient validation in ASP BIOS and DRTM commands may allow malicious supervisor x86 software to…

First published (updated )

Amd Epyc 7003 FirmwareFailure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of …

First published (updated )

Amd Epyc 7h12 FirmwareInput Validation

7.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Xen XenIBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leadi…

First published (updated )

Amd Athlon 3050ge FirmwareExecution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microa…

First published (updated )

Amd Epyc 7001 FirmwareAn attacker with access to a malicious hypervisor may be able to infer data values used in a SEV gue…

First published (updated )

Amd Ryzen 3 2200u FirmwareInsufficient checks in System Management Unit (SMU) FeatureConfig may result in reenabling features …

First published (updated )

Amd Epyc 7763 FirmwareFailure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) ma…

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203