CVEs (7)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
1Amd 5Athlon Firmware Athlon Pro FirmwareEpyc Firmware+2 moreNov 21, 2024 Oct 13, 2021 N/A· v4 4.7 MEDIUM· v3 1.9 LOW· v2 A timing and power-based side channel attack leveraging the x86 PREFETCH instructions on some AMD CPUs could potentially result in leaked kernel address space information. |
1Amd 4Epyc Server Firmware Ryzen FirmwareRyzen Mobile Firmware+1 moreNov 21, 2024 Mar 22, 2018 N/A· v4 9.0 CRITICAL· v3 9.3 HIGH· v2 The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips allow Platform Security Processor (PSP) privilege escalation. |
1Amd 2Ryzen Firmware Ryzen Pro FirmwareNov 21, 2024 Mar 22, 2018 N/A· v4 9.0 CRITICAL· v3 9.3 HIGH· v2 The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in the ASIC, aka CHIMERA-HW. |
1Amd 2Ryzen Firmware Ryzen Pro FirmwareNov 21, 2024 Mar 22, 2018 N/A· v4 9.0 CRITICAL· v3 9.3 HIGH· v2 The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in firmware, aka CHIMERA-FW. |
1Amd 2Ryzen Firmware Ryzen Pro FirmwareNov 21, 2024 Mar 22, 2018 N/A· v4 9.0 CRITICAL· v3 9.3 HIGH· v2 The AMD Ryzen and Ryzen Pro processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-2, RYZENFALL-3, and RYZENFALL-4. |
1Amd 3Ryzen Firmware Ryzen Mobile FirmwareRyzen Pro FirmwareNov 21, 2024 Mar 22, 2018 N/A· v4 9.0 CRITICAL· v3 9.3 HIGH· v2 The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-1. |
1Amd 4Epyc Server Firmware Ryzen FirmwareRyzen Mobile Firmware+1 moreNov 21, 2024 Mar 22, 2018 N/A· v4 9.0 CRITICAL· v3 9.3 HIGH· v2 The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3. |