CVE-2021-26393
5.5
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 1.8 / Impact: 3.6
Source: NVD
Description
Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poison the contents of the process memory with attacker controlled data resulting in a loss of confidentiality.
Affected (67)
Products: Amd: Enterprise Driver, Radeon Pro Software, Radeon Software, Radeon Rx Vega 56 Firmware, Radeon Rx Vega 64 Firmware, Ryzen 3 2200ge Firmware, Ryzen 3 2200g Firmware, Ryzen 5 2400ge Firmware, Ryzen 5 2400g Firmware, Ryzen 3 5300ge Firmware, Ryzen 3 5300g Firmware, Ryzen 5 5600ge Firmware, Ryzen 5 5600g Firmware, Ryzen 7 5700ge Firmware, Ryzen 7 5700g Firmware, Athlon Silver 3050e Firmware, Athlon Pro 3045b Firmware, Athlon Silver 3050u Firmware, Athlon Silver 3050c Firmware, Athlon Pro 3145b Firmware, Athlon Gold 3150u Firmware, Athlon Gold 3150c Firmware, Ryzen 3 3250u Firmware, Ryzen 3 3250c Firmware, Amd 3020e Firmware, Amd 3015e Firmware, Amd 3015ce Firmware, Ryzen 3 2200u Firmware, Ryzen 3 2300u Firmware, Ryzen 5 2500u Firmware, Ryzen 5 2600h Firmware, Ryzen 7 2700u Firmware, Ryzen 7 2800h Firmware, Ryzen 3 3300u Firmware, Ryzen 3 3350u Firmware, Ryzen 5 3450u Firmware, Ryzen 5 3500u Firmware, Ryzen 5 3500c Firmware, Ryzen 5 3550h Firmware, Ryzen 5 3580u Firmware, Ryzen 7 3700u Firmware, Ryzen 7 3700c Firmware, Ryzen 7 3750h Firmware, Ryzen 7 3780u Firmware, Ryzen 3 Pro 3200ge Firmware, Ryzen 3 3200g Firmware, Ryzen 3 Pro 3200g Firmware, Ryzen 5 Pro 3350ge Firmware, Ryzen 5 Pro 3350g Firmware, Ryzen 5 Pro 3400ge Firmware, Ryzen 5 Pro 3400g Firmware, Ryzen 5 3400g Firmware, Ryzen 3 5300u Firmware, Ryzen 5 5500u Firmware, Ryzen 7 5700u Firmware, Ryzen 3 5400u Firmware, Ryzen 5 5560u Firmware, Ryzen 5 5600u Firmware, Ryzen 5 5600h Firmware, Ryzen 5 5600hs Firmware, Ryzen 7 5800u Firmware, Ryzen 7 5800h Firmware, Ryzen 7 5800hs Firmware, Ryzen 9 5900hs Firmware, Ryzen 9 5900hx Firmware, Ryzen 9 5980hs Firmware, Ryzen 9 5980hx Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Before 22.10.20 | |
| Before 22.q2 | |
| Before 22.5.2 |
| Running on/with | Platform Versions |
|---|---|
Amd Radeon Pro W5500 | All versions |
Amd Radeon Pro W5500x | All versions |
Amd Radeon Pro W5700 | All versions |
Amd Radeon Pro W5700x | All versions |
Amd Radeon Pro W6300m | All versions |
Amd Radeon Pro W6400 | All versions |
Amd Radeon Pro W6500m | All versions |
Amd Radeon Pro W6600 | All versions |
Amd Radeon Pro W6600m | All versions |
Amd Radeon Pro W6600x | All versions |
Amd Radeon Pro W6800 | All versions |
Amd Radeon Pro W6800x | All versions |
Amd Radeon Pro W6800x Duo | All versions |
Amd Radeon Pro W6900x | All versions |
Amd Radeon Rx 5300 | All versions |
Amd Radeon Rx 5300 Xt | All versions |
Amd Radeon Rx 5300m | All versions |
Amd Radeon Rx 5500 | All versions |
Amd Radeon Rx 5500 Xt | All versions |
Amd Radeon Rx 5500m | All versions |
Amd Radeon Rx 5600 | All versions |
Amd Radeon Rx 5600 Xt | All versions |
Amd Radeon Rx 5600m | All versions |
Amd Radeon Rx 5700 | All versions |
Amd Radeon Rx 5700 Xt | All versions |
Amd Radeon Rx 5700m | All versions |
Amd Radeon Rx 6300m | All versions |
Amd Radeon Rx 6400 | All versions |
Amd Radeon Rx 6500 Xt | All versions |
Amd Radeon Rx 6500m | All versions |
Amd Radeon Rx 6600 | All versions |
Amd Radeon Rx 6600 Xt | All versions |
Amd Radeon Rx 6600m | All versions |
Amd Radeon Rx 6600s | All versions |
Amd Radeon Rx 6650 Xt | All versions |
Amd Radeon Rx 6650m | All versions |
Amd Radeon Rx 6650m Xt | All versions |
Amd Radeon Rx 6700 | All versions |
Amd Radeon Rx 6700 Xt | All versions |
Amd Radeon Rx 6700m | All versions |
Amd Radeon Rx 6700s | All versions |
Amd Radeon Rx 6750 Xt | All versions |
Amd Radeon Rx 6800 | All versions |
Amd Radeon Rx 6800 Xt | All versions |
Amd Radeon Rx 6800m | All versions |
Amd Radeon Rx 6800s | All versions |
Amd Radeon Rx 6850m Xt | All versions |
Amd Radeon Rx 6900 Xt | All versions |
Amd Radeon Rx 6950 Xt | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Radeon Rx Vega 56 | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Radeon Rx Vega 64 | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 2200ge | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 2200g | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 2400ge | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 2400g | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 5300ge | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 5300g | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600ge | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600g | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5700ge | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5700g | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Athlon Silver 3050e | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Athlon Pro 3045b | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Athlon Silver 3050u | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Athlon Silver 3050c | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Athlon Pro 3145b | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Athlon Gold 3150u | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Athlon Gold 3150c | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 3250u | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 3250c | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Amd 3020e | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Amd 3015e | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Amd 3015ce | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 2200u | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 2300u | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 2500u | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 2600h | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 2700u | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 2800h | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 3300u | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 3350u | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 3450u | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 3500u | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 3500c | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 3550h | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 3580u | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 3700u | All versions |
Configuration N
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 3700c | All versions |
Configuration O
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 3750h | All versions |
Configuration P
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 3780u | All versions |
Configuration Q
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 Pro 3200ge | All versions |
Configuration R
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 3200g | All versions |
Configuration S
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 Pro 3200g | All versions |
Configuration T
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 Pro 3350ge | All versions |
Configuration U
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 Pro 3350g | All versions |
Configuration V
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 Pro 3400ge | All versions |
Configuration W
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 Pro 3400g | All versions |
Configuration X
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 3400g | All versions |
Configuration Y
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 5300u | All versions |
Configuration Z
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5500u | All versions |
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5700u | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 3 5400u | All versions |
Configuration C
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5560u | All versions |
Configuration D
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600u | All versions |
Configuration E
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600h | All versions |
Configuration F
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 5 5600hs | All versions |
Configuration G
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5800u | All versions |
Configuration H
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5800h | All versions |
Configuration I
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 7 5800hs | All versions |
Configuration J
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 9 5900hs | All versions |
Configuration K
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 9 5900hx | All versions |
Configuration L
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 9 5980hs | All versions |
Configuration M
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Amd Ryzen 9 5980hx | All versions |
References (4)
Source: psirt@amd.com
Vendor Advisory
Source: psirt@amd.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Timeline
No history available yet.