CVSS: 7.1EPSS: 0%CPEs: 98EXPL: 0CVE-2021-26370
https://notcve.org/view.php?id=CVE-2021-26370
10 May 2022 — Improper validation of destination address in SVC_LOAD_FW_IMAGE_BY_INSTANCE and SVC_LOAD_BINARY_BY_ATTRIB in a malicious UApp or ABL may allow an attacker to overwrite arbitrary bootloader memory with SPI ROM contents resulting in a loss of integrity and availability. Una comprobación inapropiada de la dirección de destino en SVC_LOAD_FW_IMAGE_BY_INSTANCE y SVC_LOAD_BINARY_BY_ATTRIB en una UApp o ABL maliciosa puede permitir a un atacante sobrescribir la memoria arbitraria del administrador de arranque con ... • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 • CWE-20: Improper Input Validation •
CVSS: 6.5EPSS: 0%CPEs: 252EXPL: 0CVE-2021-26341 – hw: cpu: AMD CPUs may transiently execute beyond unconditional direct branch
https://notcve.org/view.php?id=CVE-2021-26341
11 Mar 2022 — Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage. Algunas CPUs de AMD pueden ejecutar transitoriamente más allá de las ramas directas no condicionales, lo que puede potencialmente resultar en un filtrado de datos A flaw was found in hw. This issue can cause AMD CPUs to transiently execute beyond unconditional direct branches. Red Hat Advanced Cluster Management for Kubernetes 2.5.9 images Red Hat Advanced Cluster Management for Kubernet... • http://www.openwall.com/lists/oss-security/2022/03/18/2 • CWE-212: Improper Removal of Sensitive Information Before Storage or Transfer CWE-552: Files or Directories Accessible to External Parties •
CVSS: 5.6EPSS: 0%CPEs: 252EXPL: 0CVE-2021-26401 – hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715
https://notcve.org/view.php?id=CVE-2021-26401
11 Mar 2022 — LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs. LFENCE/JMP (mitigación V2-2) puede no mitigar suficientemente CVE-2017-5715 en algunas CPUs AMD A flaw was found in hw. The speculative execution window of AMD LFENCE/JMP mitigation (MITIGATION V2-2) may be large enough to be exploited on AMD CPUs. Red Hat Advanced Cluster Management for Kubernetes 2.5.0 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges th... • http://www.openwall.com/lists/oss-security/2022/03/18/2 •
CVSS: 5.5EPSS: 0%CPEs: 214EXPL: 0CVE-2020-12966
https://notcve.org/view.php?id=CVE-2020-12966
04 Feb 2022 — AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted Virtualization with Encrypted State (SEV-ES) and Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). A local authenticated attacker could potentially exploit this vulnerability leading to leaking guest data by the malicious hypervisor. Los procesadores AMD EPYC™ contienen una vulnerabilidad de divulgación de información en la virtualización cifrada segura con estado cifrado (SEV-ES) y la virtualizac... • http://www.openwall.com/lists/oss-security/2022/08/08/6 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.4EPSS: 0%CPEs: 210EXPL: 0CVE-2021-26340
https://notcve.org/view.php?id=CVE-2021-26340
10 Dec 2021 — A malicious hypervisor in conjunction with an unprivileged attacker process inside an SEV/SEV-ES guest VM may fail to flush the Translation Lookaside Buffer (TLB) resulting in unexpected behavior inside the virtual machine (VM). Un Hypervisor malicioso en conjunción con un proceso de atacante no privilegiado dentro de una máquina virtual invitada SEV/SEV-ES puede producir un fallo en el vaciado de la Memoria Intermedia de Traducción (TLB), resultando en un comportamiento no esperado dentro de la máquina vir... • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1023 •
CVSS: 7.8EPSS: 0%CPEs: 114EXPL: 0CVE-2020-12944
https://notcve.org/view.php?id=CVE-2020-12944
16 Nov 2021 — Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution. Una validación insuficiente de la longitud de la imagen de la BIOS por parte de ASP Firmware podría conducir a la ejecución de código arbitrario • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 114EXPL: 0CVE-2021-26321
https://notcve.org/view.php?id=CVE-2021-26321
16 Nov 2021 — Insufficient ID command validation in the SEV Firmware may allow a local authenticated attacker to perform a denial of service of the PSP. Una comprobación insuficiente del comando ID en el Firmware SEV puede permitir a un atacante local autenticado llevar a cabo una denegación de servicio de la PSP • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 • CWE-20: Improper Input Validation CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 5.5EPSS: 0%CPEs: 114EXPL: 0CVE-2021-26320
https://notcve.org/view.php?id=CVE-2021-26320
16 Nov 2021 — Insufficient validation of the AMD SEV Signing Key (ASK) in the SEND_START command in the SEV Firmware may allow a local authenticated attacker to perform a denial of service of the PSP Una comprobación insuficiente de la clave de firma de AMD SEV (ASK) en el comando SEND_START en el firmware de SEV puede permitir a un atacante local autenticado llevar a cabo una denegación de servicio de la PSP • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 • CWE-295: Improper Certificate Validation •
CVSS: 7.1EPSS: 0%CPEs: 88EXPL: 0CVE-2020-12946
https://notcve.org/view.php?id=CVE-2020-12946
16 Nov 2021 — Insufficient input validation in ASP firmware for discrete TPM commands could allow a potential loss of integrity and denial of service. Una validación de entrada insuficiente en el firmware de ASP para comandos TPM discretos podría permitir una posible pérdida de integridad y una denegación de servicio. • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 114EXPL: 0CVE-2021-26322
https://notcve.org/view.php?id=CVE-2021-26322
16 Nov 2021 — Persistent platform private key may not be protected with a random IV leading to a potential “two time pad attack”. La clave privada de la plataforma persistente puede no estar protegida con un IV aleatorio, conllevando a un potencial "two time pad attack" • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 • CWE-320: Key Management Errors CWE-330: Use of Insufficiently Random Values •