CVSS: 7.0EPSS: 0%CPEs: 116EXPL: 0CVE-2020-12951
https://notcve.org/view.php?id=CVE-2020-12951
Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM (System Management Mode) operations. Una condición de carrera en el firmware de ASP podría permitir que un código x86 con menos privilegios realizara operaciones ASP SMM (System Management Mode) • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027 • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 122EXPL: 0CVE-2020-12988
https://notcve.org/view.php?id=CVE-2020-12988
A potential denial of service (DoS) vulnerability exists in the integrated chipset that may allow a malicious attacker to hang the system when it is rebooted. Existe una posible vulnerabilidad de denegación de servicio (DoS) en el chipset integrado que puede permitir a un atacante malicioso colgar el sistema cuando se reinicie • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 •
CVSS: 5.3EPSS: 0%CPEs: 17EXPL: 0CVE-2019-9836
https://notcve.org/view.php?id=CVE-2019-9836
Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic implementation. Secure Encrypted Virtualization (SEV) en Advanced Micro Devices (AMD) Platform Security Processor (PSP; también conocido como AMD Secure Processor o AMD-SP) 0.17 build 11 y versiones anteriores tiene una implementación criptográfica insegura. • http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00032.html http://packetstormsecurity.com/files/153436/AMD-Secure-Encrypted-Virtualization-SEV-Key-Recovery.html https://seclists.org/fulldisclosure/2019/Jun/46 https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03943en_us https://www.amd.com/en/corporate/product-security • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •