CVE-2021-46753

3 documents3 sources
Severity
9.1CRITICAL
EPSS
0.2%
top 53.17%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
75
AMD Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics “dali”/”dali” ULPAMD Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics “pollock”AMD Ryzen™ 2000 Series Desktop Processors “raven Ridge” AM4+72 more
Timeline
PublishedMay 9

Description

Failure to validate the length fields of the ASP (AMD Secure Processor) sensor fusion hub headers may allow an attacker with a malicious Uapp or ABL to map the ASP sensor fusion hub region and overwrite data structures leading to a potential loss of confidentiality and integrity.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:NExploitability: 3.9 | Impact: 5.2

Affected Packages75 packages

🔴Vulnerability Details

2
GHSA
GHSA-m9pv-pmcx-jf3f: Failure to validate the length fields of the ASP (AMD Secure Processor) sensor fusion hub headers may allow an attacker with a malicious Uapp or ABL t2023-05-09
CVEList
CVE-2021-46753: Failure to validate the length fields of the ASP (AMD Secure Processor) sensor fusion hub headers may allow an attacker with a malicious Uapp or ABL t2023-05-09