CVEs (11)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Amd 129Ryzen 3 3200u Firmware Ryzen 3 3250c FirmwareRyzen 3 3250u Firmware+126 moreMar 14, 2025 Feb 13, 2024 N/A· v4 6.0 MEDIUM· v3 N/A· v2 Improper Access Control in the AMD SPI protection feature may allow a user with Ring0 (kernel mode) privileged access to bypass protections potentially resulting in loss of integrity and availability....Show more |
3Amd ImaginationtechKhronos132Athlon 3000g Firmware DdkInstinct Mi100 Firmware+129 moreJun 20, 2025 Jan 16, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures. |
1Amd 64Ryzen 3 5125c Firmware Ryzen 3 5300g FirmwareRyzen 3 5300ge Firmware+61 moreNov 21, 2024 Nov 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper input validation in the SMM Supervisor may allow an attacker with a compromised SMI handler to gain Ring0 access potentially leading to arbitrary code execution.
|
1Amd 71Ryzen 3 5100 Firmware Ryzen 3 5125c FirmwareRyzen 3 5300g Firmware+68 moreNov 21, 2024 Nov 14, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.
|
1Amd 71Ryzen 3 5100 Firmware Ryzen 3 5125c FirmwareRyzen 3 5300g Firmware+68 moreNov 21, 2024 Nov 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.
|
1Amd 71Ryzen 3 5100 Firmware Ryzen 3 5125c FirmwareRyzen 3 5300g Firmware+68 moreNov 21, 2024 Nov 14, 2023 N/A· v4 7.8 HIGH· v3 N/A· v2 Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.
|
1Amd 108Athlon 3015ce Firmware Athlon 3015e FirmwareRyzen 3 3100 Firmware+105 moreNov 21, 2024 Nov 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary code execution.
|
1Amd 105Athlon 3015ce Firmware Athlon 3015e FirmwareRyzen 3 3100 Firmware+102 moreNov 21, 2024 Nov 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Failure to validate the AMD SMM communication buffer
may allow an attacker to corrupt the SMRAM potentially leading to arbitrary
code execution. |
1Amd 61Ryzen 3 4300u Firmware Ryzen 3 5125c FirmwareRyzen 3 5300g Firmware+58 moreNov 21, 2024 Nov 14, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Insufficient validation of SPI flash addresses in the ASP (AMD Secure Processor) bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity...Show more |
1Amd 1224700s Firmware Athlon Gold 3150c FirmwareAthlon Gold 3150g Firmware+119 moreNov 21, 2024 Aug 8, 2023 N/A· v4 6.8 MEDIUM· v3 N/A· v2 An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary cod...Show more |
4Amd DebianFedoraproject+1 more155Debian Linux Epyc 72f3 FirmwareEpyc 7313 Firmware+152 moreNov 21, 2024 Aug 8, 2023 N/A· v4 4.7 MEDIUM· v3 N/A· v2 A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to...Show more |