CVE-2021-26315Insufficient Verification of Data Authenticity in AMD Epyc 7003 Firmware

CWE-345Insufficient Verification of Data Authenticity3 documents3 sources
Severity
7.8HIGHNVD
EPSS
0.1%
top 80.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
21
AMD 3RD GEN AMD EpycAMD Epyc 7003 FirmwareAMD Epyc 72f3 Firmware+18 more
Timeline
PublishedNov 16
Latest updateMay 24

Description

When the AMD Platform Security Processor (PSP) boot rom loads, authenticates, and subsequently decrypts an encrypted FW, due to insufficient verification of the integrity of decrypted image, arbitrary code may be executed in the PSP when encrypted firmware images are used.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages21 packages

NVDamd/epyc_7003_firmware< milanpi-sp3_1.0.0.4
NVDamd/epyc_72f3_firmware< milanpi-sp3_1.0.0.4
NVDamd/epyc_7313_firmware< milanpi-sp3_1.0.0.4
NVDamd/epyc_7343_firmware< milanpi-sp3_1.0.0.4
NVDamd/epyc_73f3_firmware< milanpi-sp3_1.0.0.4

🔴Vulnerability Details

2
GHSA
GHSA-4qp6-97jw-9prg: When the AMD Platform Security Processor (PSP) boot rom loads, authenticates, and subsequently decrypts an encrypted FW, due to insufficient verificat2022-05-24
CVEList
CVE-2021-26315: When the AMD Platform Security Processor (PSP) boot rom loads, authenticates, and subsequently decrypts an encrypted FW, due to insufficient verificat2021-11-16
CVE-2021-26315 — AMD Epyc 7003 Firmware vulnerability | cvebase