CVE-2021-26316 | Severity.io

Description

Failure to validate the communication buffer and communication service in the BIOS may allow an attacker to tamper with the buffer resulting in potential SMM (System Management Mode) arbitrary code execution.

Related CPE's

epyc_7h12_firmware

Vulnerable

epyc_7f72_firmware

Vulnerable

epyc_7f52_firmware

Vulnerable

epyc_7f32_firmware

Vulnerable

epyc_7742_firmware

Vulnerable

epyc_7702p_firmware

Vulnerable

epyc_7702_firmware

Vulnerable

epyc_7662_firmware

Vulnerable

epyc_7642_firmware

Vulnerable

epyc_7552_firmware

Vulnerable

epyc_7542_firmware

Vulnerable

epyc_7532_firmware

Vulnerable

epyc_7502p_firmware

Vulnerable

epyc_7502_firmware

Vulnerable

epyc_7452_firmware

Vulnerable

epyc_7402_firmware

Vulnerable

epyc_7402p_firmware

Vulnerable

epyc_7352_firmware

Vulnerable

epyc_7302p_firmware

Vulnerable

epyc_7302_firmware

Vulnerable

epyc_7282_firmware

Vulnerable

epyc_7272_firmware

Vulnerable

epyc_7262_firmware

Vulnerable

epyc_7252_firmware

Vulnerable

epyc_7232p_firmware

Vulnerable

epyc_7002_firmware

Vulnerable

epyc_7003_firmware

Vulnerable

epyc_72f3_firmware

Vulnerable

epyc_7313_firmware

Vulnerable

epyc_7313p_firmware

Vulnerable

epyc_7343_firmware

Vulnerable

epyc_7373x_firmware

Vulnerable

epyc_73f3_firmware

Vulnerable

epyc_7413_firmware

Vulnerable

epyc_7443_firmware

Vulnerable

epyc_7443p_firmware

Vulnerable

epyc_7453_firmware

Vulnerable

epyc_74f3_firmware

Vulnerable

epyc_7513_firmware

Vulnerable

epyc_7543_firmware

Vulnerable

epyc_7543p_firmware

Vulnerable

epyc_7573x_firmware

Vulnerable

epyc_75f3_firmware

Vulnerable

epyc_7643_firmware

Vulnerable

epyc_7663_firmware

Vulnerable

epyc_7713_firmware

Vulnerable

epyc_7713p_firmware

Vulnerable

epyc_7743_firmware

Vulnerable

epyc_7763_firmware

Vulnerable

epyc_7773x_firmware

Vulnerable

athlon_3050ge_firmware

Vulnerable

athlon_3150g_firmware

Vulnerable

athlon_3150ge_firmware

Vulnerable

athlon_gold_3150c_firmware

Vulnerable

athlon_gold_3150c

athlon_gold_3150ge_firmware

Vulnerable

athlon_gold_3150ge

athlon_gold_3150u_firmware

Vulnerable

athlon_gold_3150u

athlon_gold_pro_3150g_firmware

Vulnerable

athlon_gold_pro_3150g

athlon_gold_pro_3150ge_firmware

Vulnerable

athlon_gold_pro_3150ge

athlon_pro_3045b_firmware

Vulnerable

athlon_pro_3045b

athlon_pro_3145b_firmware

Vulnerable

athlon_pro_3145b

athlon_silver_3050c_firmware

Vulnerable

athlon_silver_3050c

athlon_silver_3050e_firmware

Vulnerable

athlon_silver_3050e

athlon_silver_3050ge_firmware

Vulnerable

athlon_silver_3050ge

athlon_silver_3050u_firmware

Vulnerable

athlon_silver_3050u

athlon_silver_pro_3125ge_firmware

Vulnerable

athlon_silver_pro_3125ge

ryzen_3_2200g_firmware

Vulnerable

ryzen_3_2200ge_firmware

Vulnerable

ryzen_3_2200u_firmware

Vulnerable

ryzen_3_2300u_firmware

Vulnerable

ryzen_3_5125c_firmware

Vulnerable

ryzen_3_5300g_firmware

Vulnerable

ryzen_3_5300ge_firmware

Vulnerable

ryzen_3_5300u_firmware

Vulnerable

ryzen_3_5400u_firmware

Vulnerable

ryzen_3_5425c_firmware

Vulnerable

ryzen_3_5425u_firmware

Vulnerable

ryzen_3_pro_2300u_firmware

Vulnerable

ryzen_3_pro_2300u

ryzen_5_2400g_firmware

Vulnerable

ryzen_5_2400ge_firmware

Vulnerable

ryzen_5_2500u_firmware

Vulnerable

ryzen_5_2600_firmware

Vulnerable

ryzen_5_2600h_firmware

Vulnerable

ryzen_5_2600x_firmware

Vulnerable

ryzen_5_2700x_firmware

Vulnerable

ryzen_5_5500_firmware

Vulnerable

ryzen_5_5500u_firmware

Vulnerable

ryzen_5_5560u_firmware

Vulnerable

ryzen_5_5600_firmware

Vulnerable

ryzen_5_5600g_firmware

Vulnerable

ryzen_5_5600ge_firmware

Vulnerable

ryzen_5_5600h_firmware

Vulnerable

ryzen_5_5600hs_firmware

Vulnerable

ryzen_5_5600u_firmware

Vulnerable

ryzen_5_5600x_firmware

Vulnerable

ryzen_5_5625c_firmware

Vulnerable

ryzen_5_5625u_firmware

Vulnerable

ryzen_5_5700g_firmware

Vulnerable

ryzen_5_5700ge_firmware

Vulnerable

ryzen_5_pro_2500u_firmware

Vulnerable

ryzen_5_pro_2500u

ryzen_7_2700_firmware

Vulnerable

ryzen_7_2700u_firmware

Vulnerable

ryzen_7_2700x_firmware

Vulnerable

ryzen_7_2800h_firmware

Vulnerable

ryzen_7_5700g_firmware

Vulnerable

ryzen_7_5700ge_firmware

Vulnerable

ryzen_7_5700u_firmware

Vulnerable

ryzen_7_5700x_firmware

Vulnerable

ryzen_7_5800_firmware

Vulnerable

ryzen_7_5800h_firmware

Vulnerable

ryzen_7_5800hs_firmware

Vulnerable

ryzen_7_5800u_firmware

Vulnerable

ryzen_7_5800x_firmware

Vulnerable

ryzen_7_5800x3d_firmware

Vulnerable

ryzen_7_5800x3d

ryzen_7_5825c_firmware

Vulnerable

ryzen_7_5825u_firmware

Vulnerable

ryzen_7_pro_2700u_firmware

Vulnerable

ryzen_7_pro_2700u

ryzen_9_5900_firmware

Vulnerable

ryzen_9_5900hs_firmware

Vulnerable

ryzen_9_5900hx_firmware

Vulnerable

ryzen_9_5900x_firmware

Vulnerable

ryzen_9_5950x_firmware

Vulnerable

ryzen_9_5980hs_firmware

Vulnerable

ryzen_9_5980hx_firmware

Vulnerable

ryzen_pro_2200g_firmware

Vulnerable

ryzen_pro_2200g

ryzen_pro_2200ge_firmware

Vulnerable

ryzen_pro_2200ge

ryzen_pro_2400g_firmware

Vulnerable

ryzen_pro_2400g

ryzen_pro_2400ge_firmware

Vulnerable

ryzen_pro_2400ge

ryzen_pro_5350g_firmware

Vulnerable

ryzen_pro_5350g

ryzen_pro_5350ge_firmware

Vulnerable

ryzen_pro_5350ge

ryzen_pro_5650g_firmware

Vulnerable

ryzen_pro_5650g

ryzen_pro_5650ge_firmware

Vulnerable

ryzen_pro_5650ge

ryzen_pro_5750g_firmware

Vulnerable

ryzen_pro_5750g

ryzen_pro_5750ge_firmware

Vulnerable

ryzen_pro_5750ge

ryzen_threadripper_2920x_firmware

Vulnerable

ryzen_threadripper_2920x

ryzen_threadripper_2950x_firmware

Vulnerable

ryzen_threadripper_2950x

ryzen_threadripper_2970wx_firmware

Vulnerable

ryzen_threadripper_2970wx

ryzen_threadripper_2990wx_firmware

Vulnerable

ryzen_threadripper_2990wx

ryzen_threadripper_pro_3795wx_firmware

Vulnerable

ryzen_threadripper_pro_3795wx

ryzen_threadripper_pro_3945wx_firmware

Vulnerable

ryzen_threadripper_pro_3945wx

ryzen_threadripper_pro_3955wx_firmware

Vulnerable

ryzen_threadripper_pro_3955wx

ryzen_threadripper_pro_3975wx_firmware

Vulnerable

ryzen_threadripper_pro_3975wx

ryzen_threadripper_pro_3995wx_firmware

Vulnerable

ryzen_threadripper_pro_3995wx

ryzen_threadripper_pro_5945wx_firmware

Vulnerable

ryzen_threadripper_pro_5945wx

ryzen_threadripper_pro_5955wx_firmware

Vulnerable

ryzen_threadripper_pro_5955wx

ryzen_threadripper_pro_5965wx_firmware

Vulnerable

ryzen_threadripper_pro_5965wx

ryzen_threadripper_pro_5975wx_firmware

Vulnerable

ryzen_threadripper_pro_5975wx

ryzen_threadripper_pro_5995wx_firmware

Vulnerable

ryzen_threadripper_pro_5995wx

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031

Vendor Advisory

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1032

Vendor Advisory

Weaknesses

[email protected]

Primary

CWE-20

CVSS impact metrics

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 · High

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2023-01-11T08:15:10.243

2 years ago

Last modified

2023-08-08T14:22:24.967

1 year ago