CVE-2021-26391
7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Summary
Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| AMD | AMD Radeon RX 5000 Series & PRO W5000 Series | AMD Radeon Software < 22.5.2 | affected |
| AMD | AMD Radeon RX 5000 Series & PRO W5000 Series | AMD Radeon Pro Software Enterprise < 22.Q2 | affected |
| AMD | AMD Radeon RX 5000 Series & PRO W5000 Series | Enterprise Driver < 22.10.20 | affected |
| AMD | AMD Radeon RX 6000 Series & PRO W6000 Series | AMD Radeon Software < 22.5.2 | affected |
| AMD | AMD Radeon RX 6000 Series & PRO W6000 Series | AMD Radeon Pro Software Enterprise < 22.Q2 | affected |
| AMD | AMD Radeon RX 6000 Series & PRO W6000 Series | Enterprise Driver < 22.10.20 | affected |
Weaknesses
- TBD
ADP Enrichment
CVE Program Container
Additional References
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.