CVE-2021-46768
published 2023-01-11CVE-2021-46768: Insufficient input validation in SEV firmware may allow an attacker to perform out-of-bounds memory reads within the ASP boot loader, potentially leading to a…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
Insufficient input validation in SEV firmware may allow an attacker to perform out-of-bounds memory reads within the ASP boot loader, potentially leading to a denial of service.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | 2nd_gen_epyc | — | — |
| amd | 3rd_gen_epyc | — | — |
| amd | milanpi_firmware | < 1.0.0.5 | 1.0.0.5 |
| amd | romepi_firmware | < 1.0.0.d | 1.0.0.d |