Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the bootloader resulting in a potential denial of service and loss of integrity.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:HAmd Epyc 7232p
HWAmdwszystkie wersjeAmd Epyc 7232p Firmware
OSAmdromepi_1.0.0.eAmd Epyc 7251
HWAmdwszystkie wersjeAmd Epyc 7251 Firmware
OSAmdnaplespi_1.0.0.jAmd Epyc 7252
HWAmdwszystkie wersjeAmd Epyc 7252 Firmware
OSAmdromepi_1.0.0.eAmd Epyc 7261
HWAmdwszystkie wersjeAmd Epyc 7261 Firmware
OSAmdnaplespi_1.0.0.jAmd Epyc 7262
HWAmdwszystkie wersjeAmd Epyc 7262 Firmware
OSAmdromepi_1.0.0.eAmd Epyc 7272
HWAmdwszystkie wersjeAmd Epyc 7272 Firmware
OSAmdromepi_1.0.0.eAmd Epyc 7282
HWAmdwszystkie wersjeAmd Epyc 7282 Firmware
OSAmdromepi_1.0.0.eAmd Epyc 72f3
HWAmdwszystkie wersjeAmd Epyc 72f3 Firmware
OSAmdmilanpi_1.0.0.9Amd Epyc 7302
HWAmdwszystkie wersjeAmd Epyc 7302 Firmware
OSAmdromepi_1.0.0.eAmd Epyc 7302p
HWAmdwszystkie wersjeAmd Epyc 7302p Firmware
OSAmdromepi_1.0.0.eAmd Epyc 7313
HWAmdwszystkie wersjeAmd Epyc 7313 Firmware
OSAmdmilanpi_1.0.0.9Amd Epyc 7313p
HWAmdwszystkie wersjeAmd Epyc 7313p Firmware
OSAmdmilanpi_1.0.0.9Amd Epyc 7343
HWAmdwszystkie wersjeAmd Epyc 7343 Firmware
OSAmdmilanpi_1.0.0.9Amd Epyc 7352
HWAmdwszystkie wersjeAmd Epyc 7352 Firmware
OSAmdromepi_1.0.0.eAmd Epyc 7373x
HWAmdwszystkie wersjeAmd Epyc 7373x Firmware
OSAmdmilanpi_1.0.0.9
Powiązane podatności
Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing...
Insufficient input validation of mailbox data in the SMU may allow an attacker to coerce the SMU to corrupt SM...
An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker ...
A TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow an attacker with ring0 privileges and access to the BIOS...
Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to potentially ove...