CVEs (11)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
3Amd ImaginationtechKhronos132Athlon 3000g Firmware DdkInstinct Mi100 Firmware+129 moreJun 20, 2025 Jan 16, 2024 N/A· v4 6.5 MEDIUM· v3 N/A· v2 A GPU kernel can read sensitive data from another GPU kernel (even from another user or app) through an optimized GPU memory region called _local memory_ on various architectures. |
1Amd 108Athlon 3015ce Firmware Athlon 3015e FirmwareRyzen 3 3100 Firmware+105 moreNov 21, 2024 Nov 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary code execution.
|
1Amd 105Athlon 3015ce Firmware Athlon 3015e FirmwareRyzen 3 3100 Firmware+102 moreNov 21, 2024 Nov 14, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Failure to validate the AMD SMM communication buffer
may allow an attacker to corrupt the SMRAM potentially leading to arbitrary
code execution. |
1Amd 1224700s Firmware Athlon Gold 3150c FirmwareAthlon Gold 3150g Firmware+119 moreNov 21, 2024 Aug 8, 2023 N/A· v4 6.8 MEDIUM· v3 N/A· v2 An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary cod...Show more |
5Amd DebianFedoraproject+2 more47Athlon Gold 3150g Firmware Athlon Gold 3150ge FirmwareAthlon Gold Pro 3150g Firmware+44 moreNov 21, 2024 Aug 8, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2
A division-by-zero error on some AMD processors can potentially return speculative data resulting in loss of confidentiality.
|
1Amd 54Amd 3015ce Firmware Amd 3015e FirmwareRyzen 3 2200g Firmware+51 moreJan 28, 2025 May 9, 2023 N/A· v4 8.2 HIGH· v3 N/A· v2 Certain size values in firmware binary headers could trigger out of bounds reads during signature validation, leading to denial of service or potentially limited leakage of information about out-of-bounds memory contents...Show more |
1Amd 104Ryzen 3 3100 Firmware Ryzen 3 3200g FirmwareRyzen 3 3200u Firmware+101 moreApr 9, 2025 Jan 11, 2023 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Failure to validate the integer operand in ASP (AMD Secure Processor) bootloader may allow an attacker to introduce an integer overflow in the L2 directory table in SPI flash resulting in a potential denial of service. |
1Amd 67Amd 3015ce Firmware Amd 3015e FirmwareAmd 3020e Firmware+64 moreNov 21, 2024 Nov 9, 2022 N/A· v4 5.5 MEDIUM· v3 N/A· v2 Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poison the contents of t...Show more |
1Amd 103Amd 3015ce Firmware Amd 3015e FirmwareAmd 3020e Firmware+100 moreNov 21, 2024 Nov 9, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA. |
1Amd 101Amd 3015ce Firmware Amd 3015e FirmwareAmd 3020e Firmware+98 moreNov 21, 2024 Nov 9, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper parameters handling in the AMD Secure Processor (ASP) kernel may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity. |
1Amd 103Amd 3015ce Firmware Amd 3015e FirmwareAmd 3020e Firmware+100 moreNov 21, 2024 Nov 9, 2022 N/A· v4 7.8 HIGH· v3 N/A· v2 Improper parameters handling in AMD Secure Processor (ASP) drivers may allow a privileged attacker to elevate their privileges potentially leading to loss of integrity. |