Ryzen 5 5500h Firmware

ryzen_5_5500h_firmware

Vendor: Amd • 7 CVEs

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-20596 1Amd 64Ryzen 3 5125c Firmware Ryzen 3 5300g FirmwareRyzen 3 5300ge Firmware+61 more Nov 21, 2024 Nov 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper input validation in the SMM Supervisor may allow an attacker with a compromised SMI handler to gain Ring0 access potentially leading to arbitrary code execution.
CVE-2023-20571 1Amd 71Ryzen 3 5100 Firmware Ryzen 3 5125c FirmwareRyzen 3 5300g Firmware+68 more Nov 21, 2024 Nov 14, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.
CVE-2023-20565 1Amd 71Ryzen 3 5100 Firmware Ryzen 3 5125c FirmwareRyzen 3 5300g Firmware+68 more Nov 21, 2024 Nov 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.
CVE-2023-20563 1Amd 71Ryzen 3 5100 Firmware Ryzen 3 5125c FirmwareRyzen 3 5300g Firmware+68 more Nov 21, 2024 Nov 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.
CVE-2022-23821 1Amd 108Athlon 3015ce Firmware Athlon 3015e FirmwareRyzen 3 3100 Firmware+105 more Nov 21, 2024 Nov 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary code execution.
CVE-2022-23820 1Amd 105Athlon 3015ce Firmware Athlon 3015e FirmwareRyzen 3 3100 Firmware+102 more Nov 21, 2024 Nov 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code execution.
CVE-2021-46758 1Amd 61Ryzen 3 4300u Firmware Ryzen 3 5125c FirmwareRyzen 3 5300g Firmware+58 more Nov 21, 2024 Nov 14, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Insufficient validation of SPI flash addresses in the ASP (AMD Secure Processor) bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity...Show more Insufficient validation of SPI flash addresses in the ASP (AMD Secure Processor) bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity. Show less