CVE-2021-26345

Summary

Failure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token to force an out-of-bounds memory read potentially resulting in a denial of service.

Affected Software

VendorProductVersion RangeStatus
AMD2nd Gen AMD EPYC™ Processorsvariousaffected
AMD3rd Gen AMD EPYC™ Processorsvariousaffected
AMD4th Gen AMD EPYC™ Processorsvariousaffected
AMDAMD EPYC™ Embedded 7002variousaffected
AMDAMD EPYC™ Embedded 7003variousaffected
AMDAMD EPYC™ Embedded 7002variousaffected
AMDAMD EPYC™ Embedded 7003variousaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References