cbcvebase.
CVE-2021-26404
published 2023-01-11

CVE-2021-26404: Improper input validation and bounds checking in SEV firmware may leak scratch buffer bytes leading to potential information disclosure.

medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
Improper input validation and bounds checking in SEV firmware may leak scratch buffer bytes leading to potential information disclosure.

Affected

24 ranges
VendorProductVersion rangeFixed in
amd3rd_gen_epyc
amdepyc_7003_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7313_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7313p_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7343_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7373x_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_73f3_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7413_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7443_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7443p_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7453_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7473x_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_74f3_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7513_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7543_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7543p_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7573x_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_75f3_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7643_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7663_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7713_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7713p_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7763_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9
amdepyc_7773x_firmware< milanpi-sp3_1.0.0.9milanpi-sp3_1.0.0.9