CVEs (69)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Amd 58Epyc 7001 Firmware Epyc 7002 FirmwareEpyc 7003 Firmware+55 moreNov 21, 2024 Nov 16, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauthorized SPI ROM modification. |
1Amd 58Epyc 7001 Firmware Epyc 7002 FirmwareEpyc 7003 Firmware+55 moreNov 21, 2024 Nov 16, 2021 N/A· v4 7.0 HIGH· v3 4.4 MEDIUM· v2 Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM (System Management Mode) operations. |
1Amd 44Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+41 moreNov 21, 2024 Nov 16, 2021 N/A· v4 7.1 HIGH· v3 6.6 MEDIUM· v2 Insufficient input validation in ASP firmware for discrete TPM commands could allow a potential loss of integrity and denial of service. |
1Amd 57Epyc 7232p Firmware Epyc 7251 FirmwareEpyc 7252 Firmware+54 moreNov 21, 2024 Nov 16, 2021 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution. |
1Amd 44Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+41 moreNov 21, 2024 Nov 16, 2021 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Improper access controls in System Management Unit (SMU) may allow for an attacker to override performance control tables located in DRAM resulting in a potential lack of system resources. |
1Amd 57Epyc 7232p Firmware Epyc 7251 FirmwareEpyc 7252 Firmware+54 moreNov 21, 2024 Nov 16, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provided which may result in a potential loss of resources. |
1Amd 57Epyc 7232p Firmware Epyc 7251 FirmwareEpyc 7252 Firmware+54 moreNov 21, 2024 Nov 16, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Persistent platform private key may not be protected with a random IV leading to a potential “two time pad attack”. |
1Amd 57Epyc 7232p Firmware Epyc 7251 FirmwareEpyc 7252 Firmware+54 moreNov 21, 2024 Nov 16, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity. |
1Amd 61Epyc 7001 Firmware Epyc 7002 FirmwareEpyc 7003 Firmware+58 moreNov 21, 2024 Jun 11, 2021 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 A potential denial of service (DoS) vulnerability exists in the integrated chipset that may allow a malicious attacker to hang the system when it is rebooted. |