CVE-2024-21981
published 2024-08-13CVE-2024-21981: Improper key usage control in AMD Secure Processor (ASP) may allow an attacker with local access who has gained arbitrary code execution privilege in ASP to…
medium5.7CVSS 3.1
AVLACHPRHUINSUCHIHAN
Improper key usage control in AMD Secure Processor
(ASP) may allow an attacker with local access who has gained arbitrary code
execution privilege in ASP to
extract ASP cryptographic keys, potentially resulting in loss of
confidentiality and integrity.
Affected
20 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | amd_athlon_3000_series_desktop_processors_with_radeon_graphics | — | — |
| amd | amd_athlon_3000_series_mobile_processors_with_radeon_graphics | — | — |
| amd | amd_epyc_7001_series_processors | — | — |
| amd | amd_epyc_7002_series_processors | — | — |
| amd | amd_epyc_7003_series_processors | — | — |
| amd | amd_epyc_embedded_3000_series_processors | — | — |
| amd | amd_epyc_embedded_7002_series_processors | — | — |
| amd | amd_epyc_embedded_7003_series_processors | — | — |
| amd | amd_ryzen_3000_series_desktop_processors | — | — |
| amd | amd_ryzen_3000_series_mobile_processor_with_radeon_graphics | — | — |
| amd | amd_ryzen_4000_series_desktop_processors_with_radeon_graphics | — | — |
| amd | amd_ryzen_5000_series_desktop_processor_with_radeon_graphics | — | — |
| amd | amd_ryzen_5000_series_desktop_processors | — | — |
| amd | amd_ryzen_embedded_5000_series_processors | — | — |
| amd | amd_ryzen_embedded_r1000_series_processors | — | — |
| amd | amd_ryzen_embedded_r2000_series_processors | — | — |
| amd | amd_ryzen_embedded_v1000_series_processors | — | — |
| amd | amd_ryzen_threadripper_3000_series_processors | — | — |
| amd | amd_ryzen_threadripper_pro_3000wx_series_processors | — | — |
| amd | amd_ryzen_threadripper_pro_5000wx_processors | — | — |