CVEs (71)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Amd 88Epyc 5552 Firmware Epyc 7232p FirmwareEpyc 7251 Firmware+85 moreNov 27, 2024 Jul 11, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A potential power side-channel vulnerability in some AMD processors may allow an authenticated attacker to use the power reporting functionality to monitor a program’s execution inside an AMD SEV VM potentially resultin...Show more |
1Amd 63Epyc 7232p Firmware Epyc 7251 FirmwareEpyc 7252 Firmware+60 moreJan 28, 2025 May 9, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the bootloader resulting in...Show more |
1Amd 48Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+45 moreJan 28, 2025 May 9, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 An attacker with a compromised ASP could
possibly send malformed commands to an ASP on another CPU, resulting in an out
of bounds write, potentially leading to a loss a loss of integrity.
|
1Amd 63Epyc 7232p Firmware Epyc 7251 FirmwareEpyc 7252 Firmware+60 moreJan 28, 2025 May 9, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper access control settings in ASP
Bootloader may allow an attacker to corrupt the return address causing a
stack-based buffer overrun potentially leading to arbitrary code execution.
|
1Amd 23Epyc 72f3 Firmware Epyc 7313 FirmwareEpyc 7313p Firmware+20 moreJan 28, 2025 May 9, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Insufficient input validation on the model
specific register: VM_HSAVE_PA may potentially lead to loss of SEV-SNP guest
memory integrity.
|
1Amd 48Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+45 moreJan 28, 2025 May 9, 2023 N/A· v4 6.8 MEDIUM· v3 N/A· v2 Improper input validation in ABL may enable an
attacker with physical access, to perform arbitrary memory overwrites,
potentially leading to a loss of integrity and code execution.
|
1Amd 48Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+45 moreJan 28, 2025 May 9, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 Insufficient syscall input validation in the ASP
Bootloader may allow a privileged attacker to execute arbitrary DMA copies,
which can lead to code execution.
|
1Amd 48Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+45 moreJan 28, 2025 May 9, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Improper validation of DRAM addresses in SMU may
allow an attacker to overwrite sensitive memory locations within the ASP
potentially resulting in a denial of service.
|
1Amd 48Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+45 moreJan 28, 2025 May 9, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Insufficient input validation in the SMU may
enable a privileged attacker to write beyond the intended bounds of a shared
memory buffer potentially leading to a loss of integrity.
|
1Amd 48Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+45 moreNov 21, 2024 May 9, 2023 N/A· v4 9.1 CRITICAL· v3 N/A· v2 Insufficient input validation in the SMU may
allow an attacker to corrupt SMU SRAM potentially leading to a loss of
integrity or denial of service. |
1Amd 23Epyc 72f3 Firmware Epyc 7313 FirmwareEpyc 7313p Firmware+20 moreJan 28, 2025 May 9, 2023 N/A· v4 7.1 HIGH· v3 N/A· v2 Insufficient address validation, may allow an
attacker with a compromised ABL and UApp to corrupt sensitive memory locations
potentially resulting in a loss of integrity or availability.
|
1Amd 48Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+45 moreJan 28, 2025 May 9, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Insufficient input validation of mailbox data in the
SMU may allow an attacker to coerce the SMU to corrupt SMRAM, potentially
leading to a loss of integrity and privilege escalation.
|
1Amd 128Amd 3015ce Firmware Amd 3015e FirmwareEpyc 7001 Firmware+125 moreJan 28, 2025 May 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 A compromised or malicious ABL or UApp could
send a SHA256 system call to the bootloader, which may result in exposure of
ASP memory to userspace, potentially leading to information disclosure.
|
1Amd 98Epyc 7001 Firmware Epyc 7002 FirmwareEpyc 7232p Firmware+95 moreJan 28, 2025 May 9, 2023 N/A· v4 7.4 HIGH· v3 N/A· v2 A TOCTOU in ASP bootloader may allow an attacker
to tamper with the SPI ROM following data read to memory potentially resulting
in S3 data corruption and information disclosure.
|
1Amd 152Amd 3015ce Firmware Amd 3015e FirmwareEpyc 7002 Firmware+149 moreJan 28, 2025 May 9, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Insufficient bounds checking in ASP may allow an
attacker to issue a system call from a compromised ABL which may cause
arbitrary memory values to be initialized to zero, potentially leading to a
loss of integrity.
|
1Amd 50Epyc 7002 Firmware Epyc 7003 FirmwareEpyc 7232p Firmware+47 moreApr 7, 2025 Jan 11, 2023 N/A· v4 5.3 MEDIUM· v3 N/A· v2 Insufficient input validation in the SMU may allow an attacker to improperly lock resources, potentially resulting in a denial of service.
|
1Amd 50Epyc 7002 Firmware Epyc 7003 FirmwareEpyc 7232p Firmware+47 moreApr 7, 2025 Jan 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Insufficient bound checks in the SMU may allow an attacker to update the SRAM from/to address space to an invalid value potentially resulting in a denial of service.
|
1Amd 24Epyc 7003 Firmware Epyc 72f3 FirmwareEpyc 7313 Firmware+21 moreApr 7, 2025 Jan 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Insufficient input validation of BIOS mailbox messages in SMU may result in out-of-bounds memory reads potentially resulting in a denial of service.
|
1Amd 50Epyc 7002 Firmware Epyc 7003 FirmwareEpyc 7232p Firmware+47 moreApr 7, 2025 Jan 11, 2023 N/A· v4 7.5 HIGH· v3 N/A· v2 Insufficient bound checks in the SMU may allow an attacker to update the from/to address space to an invalid value potentially resulting in a denial of service.
|
1Amd 50Epyc 7002 Firmware Epyc 7003 FirmwareEpyc 7232p Firmware+47 moreApr 7, 2025 Jan 11, 2023 N/A· v4 2.4 LOW· v3 N/A· v2 Insufficient input validation in the SMU may allow a physical attacker to exfiltrate SMU memory contents over the I2C bus potentially leading to a loss of confidentiality.
|