CVE-2021-26366Resource Exposure in AMD Athlon Series

CWE-668Resource Exposure3 documents3 sources
Severity
7.1HIGHNVD
EPSS
0.1%
top 81.88%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
AMD Athlon SeriesAMD Ryzen Series
Timeline
PublishedMay 12
Latest updateMay 13

Description

An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:NExploitability: 1.8 | Impact: 5.2

Affected Packages2 packages

CVEListV5amd/ryzen_seriesvarious
CVEListV5amd/athlon_seriesvarious

🔴Vulnerability Details

2
GHSA
GHSA-gcw2-hf24-m7fv: An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integri2022-05-13
CVEList
CVE-2021-26366: An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integri2022-05-12
CVE-2021-26366 — Resource Exposure in AMD Athlon Series | cvebase