CVE-2020-12961

Summary

A potential vulnerability exists in AMD Platform Security Processor (PSP) that may allow an attacker to zero any privileged register on the System Management Network which may lead to bypassing SPI ROM protections.

Affected Software

VendorProductVersion RangeStatus
AMD2nd Gen AMD EPYC™unspecified < RomePI-SP3_1.0.0.Caffected
AMD3rd Gen AMD EPYC™unspecified < MilanPI-SP3_1.0.0.4affected

Weaknesses

  • CWE-20: CWE-20 Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References