CVE-2021-46757
published 2024-02-13CVE-2021-46757: Insufficient checking of memory buffer in ASP Secure OS may allow an attacker with a malicious TA to read/write to the ASP Secure OS kernel virtual address…
high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Insufficient checking of memory buffer in ASP
Secure OS may allow an attacker with a malicious TA to read/write to the ASP
Secure OS kernel virtual address space potentially leading to privilege
escalation.
Affected
12 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | amd_ryzen_embedded_5000 | — | — |
| amd | amd_ryzen_embedded_v2000 | — | — |
| amd | ryzen_embedded_5600e_firmware | < embam4pi_1.0.0.0 | embam4pi_1.0.0.0 |
| amd | ryzen_embedded_5800e_firmware | < embam4pi_1.0.0.0 | embam4pi_1.0.0.0 |
| amd | ryzen_embedded_5900e_firmware | < embam4pi_1.0.0.0 | embam4pi_1.0.0.0 |
| amd | ryzen_embedded_5950e_firmware | < embam4pi_1.0.0.0 | embam4pi_1.0.0.0 |
| amd | ryzen_embedded_r2312_firmware | < embeddedpi-fp6_1.0.0.6 | embeddedpi-fp6_1.0.0.6 |
| amd | ryzen_embedded_r2314_firmware | < embeddedpi-fp6_1.0.0.6 | embeddedpi-fp6_1.0.0.6 |
| amd | ryzen_embedded_v2516_firmware | < embeddedpi-fp6_1.0.0.6 | embeddedpi-fp6_1.0.0.6 |
| amd | ryzen_embedded_v2546_firmware | < embeddedpi-fp6_1.0.0.6 | embeddedpi-fp6_1.0.0.6 |
| amd | ryzen_embedded_v2718_firmware | < embeddedpi-fp6_1.0.0.6 | embeddedpi-fp6_1.0.0.6 |
| amd | ryzen_embedded_v2748_firmware | < embeddedpi-fp6_1.0.0.6 | embeddedpi-fp6_1.0.0.6 |