An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker with access the ability to modify the BIOS image, and the ability to sign the resulting image, to potentially modify the APCB block resulting in arbitrary code execution.
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:C/C:H/I:H/A:HAmd Epyc 7203
HWAmdwszystkie wersjeAmd Epyc 7203 Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7203p
HWAmdwszystkie wersjeAmd Epyc 7203p Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7282
HWAmdwszystkie wersjeAmd Epyc 7282 Firmware
OSAmd< romepi_1.0.0.cAmd Epyc 72f3
HWAmdwszystkie wersjeAmd Epyc 72f3 Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7302
HWAmdwszystkie wersjeAmd Epyc 7302 Firmware
OSAmd< romepi_1.0.0.cAmd Epyc 7302p
HWAmdwszystkie wersjeAmd Epyc 7302p Firmware
OSAmd< romepi_1.0.0.cAmd Epyc 7303
HWAmdwszystkie wersjeAmd Epyc 7303 Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7303p
HWAmdwszystkie wersjeAmd Epyc 7303p Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7313
HWAmdwszystkie wersjeAmd Epyc 7313 Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7313p
HWAmdwszystkie wersjeAmd Epyc 7313p Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7343
HWAmdwszystkie wersjeAmd Epyc 7343 Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7352
HWAmdwszystkie wersjeAmd Epyc 7352 Firmware
OSAmd< romepi_1.0.0.cAmd Epyc 7373x
HWAmdwszystkie wersjeAmd Epyc 7373x Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 73f3
HWAmdwszystkie wersjeAmd Epyc 73f3 Firmware
OSAmd< milanpi_1.0.0.5Amd Epyc 7402
HWAmdwszystkie wersjeAmd Epyc 7402 Firmware
OSAmd< romepi_1.0.0.c
Related vulnerabilities
Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing...
Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow...
Insufficient input validation of mailbox data in the SMU may allow an attacker to coerce the SMU to corrupt SM...
A TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow an attacker with ring0 privileges and access to the BIOS...
Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to potentially ove...