CVE-2021-46759
published 2023-05-09CVE-2021-46759: Improper syscall input validation in AMD TEE (Trusted Execution Environment) may allow an attacker with physical access and control of a Uapp that runs under…
medium6.1CVSS 3.1
AVPACLPRNUINSUCHIHAN
Improper syscall input validation in AMD TEE
(Trusted Execution Environment) may allow an attacker with physical access and
control of a Uapp that runs under the bootloader to reveal the contents of the
ASP (AMD Secure Processor) bootloader accessible memory to a serial port,
resulting in a potential loss of integrity.
Affected
197 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | athlon_3000_series_mobile_processors_with_radeon_graphics_dali_dali_ulp | — | — |
| amd | athlon_3000_series_mobile_processors_with_radeon_graphics_pollock | — | — |
| amd | athlon_gold_3150g_firmware | — | — |
| amd | athlon_gold_3150g_firmware | — | — |
| amd | athlon_gold_3150ge_firmware | — | — |
| amd | athlon_gold_3150ge_firmware | — | — |
| amd | athlon_silver_3050ge_firmware | — | — |
| amd | athlon_silver_3050ge_firmware | — | — |
| amd | ryzen_1200_firmware | — | — |
| amd | ryzen_1200_firmware | — | — |
| amd | ryzen_1200_firmware | — | — |
| amd | ryzen_1200_firmware | — | — |
| amd | ryzen_1600_firmware | — | — |
| amd | ryzen_1600_firmware | — | — |
| amd | ryzen_1600_firmware | — | — |
| amd | ryzen_1600_firmware | — | — |
| amd | ryzen_2000_series_desktop_processors_raven_ridge_am4 | — | — |
| amd | ryzen_2000_series_mobile_processors_raven_ridge_fp5 | — | — |
| amd | ryzen_2200g_firmware | — | — |
| amd | ryzen_2200g_firmware | — | — |
| amd | ryzen_2200g_firmware | — | — |
| amd | ryzen_2200g_firmware | — | — |
| amd | ryzen_2200ge_firmware | — | — |
| amd | ryzen_2200ge_firmware | — | — |
| amd | ryzen_2200ge_firmware | — | — |