CVE-2021-46758
N/A
N/A
Summary
Insufficient validation of SPI flash addresses in the ASP (AMD Secure Processor) bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| AMD | Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics “Cezanne” | various | affected |
| AMD | Ryzen™ 7000 Series Desktop Processors “Raphael” XD3 | various | affected |
| AMD | Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics “Renoir” FP6 | various | affected |
| AMD | Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne” | various | affected |
| AMD | Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Cezanne” | various | affected |
| AMD | AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics “Rembrandt” | various | affected |
| AMD | AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics “Rembrandt-R” | various | affected |
| AMD | AMD Ryzen™ 5000 Series Processors with Radeon™ Graphics “Barcelo” | various | affected |
| AMD | AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics “Barcelo-R” | various | affected |
Weaknesses
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.