Amd Epyc 7543P Firmware vulnerabilities

CVE-2021-26321 [MEDIUM] CWE-20 CVE-2021-26321: Insufficient ID command validation in the SEV Firmware may allow a local authenticated attacker to p Insufficient ID command validation in the SEV Firmware may allow a local authenticated attacker to perform a denial of service of the PSP.

CVE-2021-26312 [MEDIUM] CWE-665 CVE-2021-26312: Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) ma Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity.

CVE-2020-12954 [MEDIUM] CWE-693 CVE-2020-12954: A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI RO A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification.

CVE-2021-26337 [MEDIUM] CVE-2021-26337: Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from i Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests.

CVE-2021-26327 [MEDIUM] CWE-20 CVE-2021-26327: Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of guest Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of guest confidentiality.

CVE-2021-26330 [MEDIUM] CWE-122 CVE-2021-26330: AMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of AMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of resources.

CVE-2021-26329 [MEDIUM] CWE-130 CVE-2021-26329: AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provid AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provided which may result in a potential loss of resources.

CVE-2021-26336 [MEDIUM] CWE-119 CVE-2021-26336: Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updat Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components.

CVE-2021-26325 [MEDIUM] CWE-20 CVE-2021-26325: Insufficient input validation in the SNP_GUEST_REQUEST command may lead to a potential data abort er Insufficient input validation in the SNP_GUEST_REQUEST command may lead to a potential data abort error and a denial of service.

CVE-2020-12988 [HIGH] CVE-2020-12988: A potential denial of service (DoS) vulnerability exists in the integrated chipset that may allow a A potential denial of service (DoS) vulnerability exists in the integrated chipset that may allow a malicious attacker to hang the system when it is rebooted.