Ryzen 5 2600h Firmware

ryzen_5_2600h_firmware

Vendor: Amd • 32 CVEs

CVEs (32)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-26369 1Amd 50Athlon 3050ge Firmware Athlon 3150g FirmwareAthlon 3150ge Firmware+47 more Nov 21, 2024 May 12, 2022 N/A· v4 7.8 HIGH· v3 4.6 MEDIUM· v2 A malicious or compromised UApp or ABL may be used by an attacker to send a malformed system call to the bootloader, resulting in out-of-bounds memory accesses.
CVE-2021-26366 1Amd 63Athlon 3050ge Firmware Athlon 3150g FirmwareAthlon 3150ge Firmware+60 more Nov 21, 2024 May 12, 2022 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity.
CVE-2021-26362 1Amd 36Athlon 3050ge Firmware Athlon 3150g FirmwareAthlon 3150ge Firmware+33 more Nov 21, 2024 May 12, 2022 N/A· v4 7.1 HIGH· v3 6.6 MEDIUM· v2 A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call which results in mapping sensitive System Management Network (SMN) registers leading to a loss of integrity and availabil...Show more A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call which results in mapping sensitive System Management Network (SMN) registers leading to a loss of integrity and availability.Show less
CVE-2021-26361 1Amd 36Athlon 3050ge Firmware Athlon 3150g FirmwareAthlon 3150ge Firmware+33 more Nov 21, 2024 May 12, 2022 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 A malicious or compromised User Application (UApp) or AGESA Boot Loader (ABL) could be used by an attacker to exfiltrate arbitrary memory from the ASP stage 2 bootloader potentially leading to information disclosure.
CVE-2021-26388 1Amd 106Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+103 more Nov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Improper validation of the BIOS directory may allow for searches to read beyond the directory table copy in RAM, exposing out of bounds memory contents, resulting in a potential denial of service.
CVE-2021-26378 1Amd 83Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+80 more Nov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient bound checks in the System Management Unit (SMU) may result in access to an invalid address space that could result in denial of service.
CVE-2021-26376 1Amd 83Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+80 more Nov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient checks in System Management Unit (SMU) FeatureConfig may result in reenabling features potentially resulting in denial of resources and/or denial of service.
CVE-2021-26375 1Amd 83Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+80 more Nov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient General Purpose IO (GPIO) bounds check in System Management Unit (SMU) may result in access/updates from/to invalid address space that could result in denial of service.
CVE-2021-26373 1Amd 87Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+84 more Nov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient bound checks in the System Management Unit (SMU) may result in a system voltage malfunction that could result in denial of resources and/or possibly denial of service.
CVE-2021-26339 1Amd 84Epyc 72f3 Firmware Epyc 7313 FirmwareEpyc 7313p Firmware+81 more Nov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 A bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM, to trigger a CPU core hang resulting in a potential denial of service. AMD believes the specific code includes a speci...Show more A bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM, to trigger a CPU core hang resulting in a potential denial of service. AMD believes the specific code includes a specific x86 instruction sequence that would not be generated by compilers.Show less
CVE-2021-26401 1Amd 126A10 9600p Firmware A10 9630p FirmwareA12 9700p Firmware+123 more Nov 21, 2024 Mar 11, 2022 N/A· v4 5.6 MEDIUM· v3 1.9 LOW· v2 LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
CVE-2021-26341 1Amd 126A10 9600p Firmware A10 9630p FirmwareA12 9700p Firmware+123 more Nov 21, 2024 Mar 11, 2022 N/A· v4 6.5 MEDIUM· v3 2.1 LOW· v2 Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.

Previous 12