CVE-2021-46766

Summary

Improper clearing of sensitive data in the ASP Bootloader may expose secret keys to a privileged attacker accessing ASP SRAM, potentially leading to a loss of confidentiality.

Affected Software

VendorProductVersion RangeStatus
AMDRyzen™ Threadripper™ PRO 3000WX Series Processors “Chagall” WSvariousaffected
AMD4th Gen AMD EPYC™ Processorsvariousaffected
AMDAMD EPYC™ Embedded 9003variousaffected

Weaknesses

ADP Enrichment

CVE Program Container

Additional References

References