CVEs (37)
CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS |
|---|
4Amd DebianFedoraproject+1 more126A10 9600p Firmware A10 9630p FirmwareA12 9700p Firmware+123 moreNov 21, 2024 Jul 14, 2022 N/A· v4 6.5 MEDIUM· v3 2.1 LOW· v2 Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure. |
4Amd DebianFedoraproject+1 more126A10 9600p Firmware A10 9630p FirmwareA12 9700p Firmware+123 moreNov 21, 2024 Jul 12, 2022 N/A· v4 6.5 MEDIUM· v3 2.1 LOW· v2 Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitecture-dependent conditions. |
1Amd 142A10 9600p Firmware A10 9630p FirmwareA12 9700p Firmware+139 moreNov 21, 2024 Jun 15, 2022 N/A· v4 6.5 MEDIUM· v3 4.0 MEDIUM· v2 A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing attack to potentially enable information disclosure. |
1Amd 70Ryzen 3 2200u Firmware Ryzen 3 2300u FirmwareRyzen 3 3100 Firmware+67 moreNov 21, 2024 May 12, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader potentially leading to corrupt memory and code execution. |
1Amd 70Ryzen 3 2200u Firmware Ryzen 3 2300u FirmwareRyzen 3 3100 Firmware+67 moreNov 21, 2024 May 12, 2022 N/A· v4 4.4 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient check of the process type in Trusted OS (TOS) may allow an attacker with privileges to enable a lesser privileged process to unmap memory owned by a higher privileged process resulting in a denial of service...Show more |
1Amd 74Athlon 3050ge Firmware Athlon 3150g FirmwareAthlon 3150ge Firmware+71 moreNov 21, 2024 May 12, 2022 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 Failure to verify the protocol in SMM may allow an attacker to control the protocol and modify SPI flash resulting in a potential arbitrary code execution. |
1Amd 63Athlon 3050ge Firmware Athlon 3150g FirmwareAthlon 3150ge Firmware+60 moreNov 21, 2024 May 12, 2022 N/A· v4 7.1 HIGH· v3 3.6 LOW· v2 An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity. |
1Amd 49Ryzen 3 3100 Firmware Ryzen 3 3300g FirmwareRyzen 3 3300x Firmware+46 moreNov 21, 2024 May 12, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA (Direct Memory Access) read/write from/to invalid DRAM address that could result in denial of service. |
1Amd 106Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+103 moreNov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Improper validation of the BIOS directory may allow for searches to read beyond the directory table copy in RAM, exposing out of bounds memory contents, resulting in a potential denial of service. |
1Amd 83Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+80 moreNov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient bound checks in the System Management Unit (SMU) may result in access to an invalid address space that could result in denial of service. |
1Amd 83Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+80 moreNov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient checks in System Management Unit (SMU) FeatureConfig may result in reenabling features potentially resulting in denial of resources and/or denial of service. |
1Amd 83Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+80 moreNov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient General Purpose IO (GPIO) bounds check in System Management Unit (SMU) may result in access/updates from/to invalid address space that could result in denial of service. |
1Amd 87Epyc 7232p Firmware Epyc 7252 FirmwareEpyc 7262 Firmware+84 moreNov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient bound checks in the System Management Unit (SMU) may result in a system voltage malfunction that could result in denial of resources and/or possibly denial of service. |
1Amd 84Epyc 72f3 Firmware Epyc 7313 FirmwareEpyc 7313p Firmware+81 moreNov 21, 2024 May 11, 2022 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 A bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM, to trigger a CPU core hang resulting in a potential denial of service. AMD believes the specific code includes a speci...Show more |
1Amd 63Athlon 3050ge Firmware Athlon 3150g FirmwareAthlon 3150ge Firmware+60 moreNov 21, 2024 Feb 4, 2022 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage. |
1Amd 112Epyc 7002 Firmware Epyc 7003 FirmwareEpyc 7232p Firmware+109 moreNov 21, 2024 Nov 16, 2021 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests. |
1Amd 95Epyc 7002 Firmware Epyc 7003 FirmwareEpyc 7232p Firmware+92 moreNov 21, 2024 Nov 16, 2021 N/A· v4 5.5 MEDIUM· v3 4.9 MEDIUM· v2 Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components. |