CVE-2021-46756
published 2023-05-09CVE-2021-46756: Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an attacker with a malicious Uapp or ABL to send…
critical9.1CVSS 3.1
AVNACLPRNUINSUCNIHAH
Insufficient validation of inputs in
SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an
attacker with a malicious Uapp or ABL to send malformed or invalid syscall to
the bootloader resulting in a potential denial of service and loss of
integrity.
Affected
80 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | 1st_gen_amd_epyc_processors | — | — |
| amd | 2nd_gen_amd_epyc_processors | — | — |
| amd | 2nd_gen_amd_ryzen_threadripper_processors_colfax | — | — |
| amd | 3rd_gen_amd_epyc_processors | — | — |
| amd | 3rd_gen_amd_ryzen_threadripper_processors_castle_peak_hedt | — | — |
| amd | amd_ryzen_5000_series_desktop_processors_vermeer_am4 | — | — |
| amd | athlon_3000_series_mobile_processors_with_radeon_graphics_dali_dali_ulp | — | — |
| amd | athlon_3000_series_mobile_processors_with_radeon_graphics_pollock | — | — |
| amd | epyc_7232p_firmware | — | — |
| amd | epyc_7251_firmware | — | — |
| amd | epyc_7252_firmware | — | — |
| amd | epyc_7261_firmware | — | — |
| amd | epyc_7262_firmware | — | — |
| amd | epyc_7272_firmware | — | — |
| amd | epyc_7281_firmware | — | — |
| amd | epyc_7282_firmware | — | — |
| amd | epyc_72f3_firmware | — | — |
| amd | epyc_7301_firmware | — | — |
| amd | epyc_7302_firmware | — | — |
| amd | epyc_7302p_firmware | — | — |
| amd | epyc_7313_firmware | — | — |
| amd | epyc_7313p_firmware | — | — |
| amd | epyc_7343_firmware | — | — |
| amd | epyc_7351_firmware | — | — |
| amd | epyc_7351p_firmware | — | — |