CVE-2021-26316

Description

Failure to validate the communication buffer and communication service in the BIOS may allow an attacker to tamper with the buffer resulting in potential SMM (System Management Mode) arbitrary code execution.

Related CPE's

oamdepyc_7h12_firmware********

hamdepyc_7h12-*******

oamdepyc_7f72_firmware********

hamdepyc_7f72-*******

oamdepyc_7f52_firmware********

hamdepyc_7f52-*******

oamdepyc_7f32_firmware********

hamdepyc_7f32-*******

oamdepyc_7742_firmware********

hamdepyc_7742-*******

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031

Vendor Advisory

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1032

Vendor Advisory

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics
Created by Yello
About Severity.io