CVE-2021-46791
published 2023-01-11CVE-2021-46791: Insufficient input validation during parsing of the System Management Mode (SMM) binary may allow a maliciously crafted SMM executable binary to corrupt…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
Insufficient input validation during parsing of the System Management Mode (SMM) binary may allow a maliciously crafted SMM executable binary to corrupt Dynamic Root of Trust for Measurement (DRTM) user application memory that may result in a potential denial of service.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | 3rd_gen_epyc | — | — |
| amd | milanpi_firmware | < 1.0.0.3 | 1.0.0.3 |