CVE-2021-26391
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD
Description
Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.
Affected (26)
Products: Amd: Enterprise Driver, Radeon Pro Software, Radeon Software, Radeon Rx Vega 56 Firmware, Radeon Rx Vega 64 Firmware, Ryzen 3 5300ge Firmware, Ryzen 3 5300g Firmware, Ryzen 5 5600ge Firmware, Ryzen 5 5600g Firmware, Ryzen 7 5700ge Firmware, Ryzen 7 5700g Firmware, Ryzen 3 5300u Firmware, Ryzen 5 5500u Firmware, Ryzen 7 5700u Firmware, Ryzen 3 5400u Firmware, Ryzen 5 5560u Firmware, Ryzen 5 5600u Firmware, Ryzen 5 5600h Firmware, Ryzen 5 5600hs Firmware, Ryzen 7 5800u Firmware, Ryzen 7 5800h Firmware, Ryzen 7 5800hs Firmware, Ryzen 9 5900hs Firmware, Ryzen 9 5900hx Firmware, Ryzen 9 5980hs Firmware, Ryzen 9 5980hx Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 22.10.20 | |
| Before 22.q2 | |
| Before 22.5.2 |
| Running on/with | Platform Versions |
|---|---|
Amd Radeon Pro W5500 | All versions |
Amd Radeon Pro W5500x | All versions |
Amd Radeon Pro W5700 | All versions |
Amd Radeon Pro W5700x | All versions |
Amd Radeon Pro W6300m | All versions |
Amd Radeon Pro W6400 | All versions |
Amd Radeon Pro W6500m | All versions |
Amd Radeon Pro W6600 | All versions |
Amd Radeon Pro W6600m | All versions |
Amd Radeon Pro W6600x | All versions |
Amd Radeon Pro W6800 | All versions |
Amd Radeon Pro W6800x | All versions |
Amd Radeon Pro W6800x Duo | All versions |
Amd Radeon Pro W6900x | All versions |
Amd Radeon Rx 5300 | All versions |
Amd Radeon Rx 5300 Xt | All versions |
Amd Radeon Rx 5300m | All versions |
Amd Radeon Rx 5500 | All versions |
Amd Radeon Rx 5500 Xt | All versions |
Amd Radeon Rx 5500m | All versions |
Amd Radeon Rx 5600 | All versions |
Amd Radeon Rx 5600 Xt | All versions |
Amd Radeon Rx 5600m | All versions |
Amd Radeon Rx 5700 | All versions |
Amd Radeon Rx 5700 Xt | All versions |
Amd Radeon Rx 5700m | All versions |
Amd Radeon Rx 6300m | All versions |
Amd Radeon Rx 6400 | All versions |
Amd Radeon Rx 6500 Xt | All versions |
Amd Radeon Rx 6500m | All versions |
Amd Radeon Rx 6600 | All versions |
Amd Radeon Rx 6600 Xt | All versions |
Amd Radeon Rx 6600m | All versions |
Amd Radeon Rx 6600s | All versions |
Amd Radeon Rx 6650 Xt | All versions |
Amd Radeon Rx 6650m | All versions |
Amd Radeon Rx 6650m Xt | All versions |
Amd Radeon Rx 6700 | All versions |
Amd Radeon Rx 6700 Xt | All versions |
Amd Radeon Rx 6700m | All versions |
Amd Radeon Rx 6700s | All versions |
Amd Radeon Rx 6750 Xt | All versions |
Amd Radeon Rx 6800 | All versions |
Amd Radeon Rx 6800 Xt | All versions |
Amd Radeon Rx 6800m | All versions |
Amd Radeon Rx 6800s | All versions |
Amd Radeon Rx 6850m Xt | All versions |
Amd Radeon Rx 6900 Xt | All versions |
Amd Radeon Rx 6950 Xt | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Radeon Rx Vega 56 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Radeon Rx Vega 64 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 5300ge | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 5300g | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600ge | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600g | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5700ge | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5700g | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 5300u | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5500u | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5700u | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 5400u | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5560u | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600u | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600h | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600hs | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5800u | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5800h | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5800hs | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 9 5900hs | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 9 5900hx | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 9 5980hs | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 9 5980hx | All versions |
References (2)
Source: psirt@amd.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.