CVE-2021-26367

Published: Aug 13, 2024Modified: Dec 12, 2024

6.0

Vector

CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:H

Exploitability: 0.8 / Impact: 5.2

Source: NVD

Description

A malicious attacker in x86 can misconfigure the Trusted Memory Regions (TMRs), which may allow the attacker to set an arbitrary address range for the TMR, potentially leading to a loss of integrity and availability.

Affected (37)

Products: Amd: Radeon Software, Ryzen 9 5980hx Firmware, Ryzen 3 3300u Firmware, Ryzen 3 3350u Firmware, Ryzen 5 3450u Firmware, Ryzen 5 3500u Firmware, Ryzen 5 3500c Firmware, Ryzen 5 3550h Firmware, Ryzen 5 3580u Firmware, Ryzen 7 3700u Firmware, Ryzen 7 3700c Firmware, Ryzen 7 3750h Firmware, Ryzen 7 3780u Firmware, Athlon Gold 3150c Firmware, Athlon Gold 3150u Firmware, Athlon Pro 3145b Firmware, Athlon Silver 3050c Firmware, Athlon Silver 3050u Firmware, Athlon Pro 3045b Firmware, Athlon Silver 3050e Firmware, Athlon Gold Pro 3150g Firmware, Athlon Gold 3150g Firmware, Athlon Gold Pro 3150ge Firmware, Athlon Pro 300ge Firmware, Ryzen 3 4300ge Firmware, Ryzen 5 4600ge Firmware, Ryzen 7 4700ge Firmware, Ryzen 3 4300g Firmware, Ryzen 5 4600g Firmware, Ryzen 7 4700g Firmware, Ryzen 3 5300ge Firmware, Ryzen 3 5300g Firmware, Ryzen 5 5600ge Firmware, Ryzen 5 5600g Firmware, Ryzen 7 5700ge Firmware, Ryzen 7 5700g Firmware

Amd

36 products

Radeon Software

Ryzen 9 5980hx Firmware

Ryzen 3 3300u Firmware

Ryzen 3 3350u Firmware

Ryzen 5 3450u Firmware

Ryzen 5 3500u Firmware

Ryzen 5 3500c Firmware

Ryzen 5 3550h Firmware

Ryzen 5 3580u Firmware

Ryzen 7 3700u Firmware

Ryzen 7 3700c Firmware

Ryzen 7 3750h Firmware

Ryzen 7 3780u Firmware

Athlon Gold 3150c Firmware

Athlon Gold 3150u Firmware

Athlon Pro 3145b Firmware

Athlon Silver 3050c Firmware

Athlon Silver 3050u Firmware

Athlon Pro 3045b Firmware

Athlon Silver 3050e Firmware

Athlon Gold Pro 3150g Firmware

Athlon Gold 3150g Firmware

Athlon Gold Pro 3150ge Firmware

Athlon Pro 300ge Firmware

Ryzen 3 4300ge Firmware

Ryzen 5 4600ge Firmware

Ryzen 7 4700ge Firmware

Ryzen 3 4300g Firmware

Ryzen 5 4600g Firmware

Ryzen 7 4700g Firmware

Ryzen 3 5300ge Firmware

Ryzen 3 5300g Firmware

Ryzen 5 5600ge Firmware

Ryzen 5 5600g Firmware

Ryzen 7 5700ge Firmware

Ryzen 7 5700g Firmware

Configuration A

1 vulnerable · 27 platform

Vulnerable Software	Affected Versions
Amd Radeon Software	Before 23.12.1

Running on/with	Platform Versions
Amd Radeon Rx 6300m	All versions
Amd Radeon Rx 6400	All versions
Amd Radeon Rx 6450m	All versions
Amd Radeon Rx 6500 Xt	All versions
Amd Radeon Rx 6500m	All versions
Amd Radeon Rx 6550m	All versions
Amd Radeon Rx 6550s	All versions
Amd Radeon Rx 6600	All versions
Amd Radeon Rx 6600 Xt	All versions
Amd Radeon Rx 6600m	All versions
Amd Radeon Rx 6600s	All versions
Amd Radeon Rx 6650 Xt	All versions
Amd Radeon Rx 6650m	All versions
Amd Radeon Rx 6650m Xt	All versions
Amd Radeon Rx 6700	All versions
Amd Radeon Rx 6700 Xt	All versions
Amd Radeon Rx 6700m	All versions
Amd Radeon Rx 6700s	All versions
Amd Radeon Rx 6750 Gre	All versions
Amd Radeon Rx 6750 Xt	All versions
Amd Radeon Rx 6800	All versions
Amd Radeon Rx 6800 Xt	All versions
Amd Radeon Rx 6800m	All versions
Amd Radeon Rx 6800s	All versions
Amd Radeon Rx 6850m Xt	All versions
Amd Radeon Rx 6900 Xt	All versions
Amd Radeon Rx 6950 Xt	All versions

Configuration B

1 vulnerable · 4 platform

Vulnerable Software	Affected Versions
Amd Radeon Software	Up to 23.q4

Running on/with	Platform Versions
Amd Radeon Pro W6300	All versions
Amd Radeon Pro W6400	All versions
Amd Radeon Pro W6600	All versions
Amd Radeon Pro W6800	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 9 5980hx Firmware	Before cezannepi-fp6_1.0.0.6

Running on/with	Platform Versions
Amd Ryzen 9 5980hx	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 3 3300u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 3 3300u	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 3 3350u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 3 3350u	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 3450u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 5 3450u	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 3500u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 5 3500u	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 3500c Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 5 3500c	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 3550h Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 5 3550h	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 3580u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 5 3580u	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 7 3700u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 7 3700u	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 7 3700c Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 7 3700c	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 7 3750h Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 7 3750h	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 7 3780u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Ryzen 7 3780u	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Gold 3150c Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Athlon Gold 3150c	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Gold 3150u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Athlon Gold 3150u	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Pro 3145b Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Athlon Pro 3145b	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Silver 3050c Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Athlon Silver 3050c	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Silver 3050u Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Athlon Silver 3050u	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Pro 3045b Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Athlon Pro 3045b	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Silver 3050e Firmware	Before picassopi-fp5_1.0.0.e

Running on/with	Platform Versions
Amd Athlon Silver 3050e	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Gold Pro 3150g Firmware	Before comboam4pi_1.0.0.9

Running on/with	Platform Versions
Amd Athlon Gold Pro 3150g	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Gold 3150g Firmware	Before comboam4pi_1.0.0.9

Running on/with	Platform Versions
Amd Athlon Gold 3150g	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Gold Pro 3150ge Firmware	Before comboam4pi_1.0.0.9

Running on/with	Platform Versions
Amd Athlon Gold Pro 3150ge	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Athlon Pro 300ge Firmware	Before comboam4pi_1.0.0.9

Running on/with	Platform Versions
Amd Athlon Pro 300ge	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 3 4300ge Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 3 4300ge	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 4600ge Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 5 4600ge	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 7 4700ge Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 7 4700ge	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 3 4300g Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 3 4300g	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 4600g Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 5 4600g	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 7 4700g Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 7 4700g	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 3 5300ge Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 3 5300ge	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 3 5300g Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 3 5300g	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 5600ge Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 5 5600ge	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 5 5600g Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 5 5600g	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 7 5700ge Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 7 5700ge	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Amd Ryzen 7 5700g Firmware	Before comboam4v2_pi_1.2.0.5

Running on/with	Platform Versions
Amd Ryzen 7 5700g	All versions

References (2)

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-4004.html

Source: psirt@amd.com

Vendor Advisory

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6005.html

Source: psirt@amd.com

Vendor Advisory

Timeline

No history available yet.