CVSS: 3.8EPSS: 0%CPEs: 32EXPL: 0CVE-2024-36348
https://notcve.org/view.php?id=CVE-2024-36348
08 Jul 2025 — A transient execution vulnerability in some AMD processors may allow a user process to infer the control registers speculatively even if UMIP feature is enabled, potentially resulting in information leakage. • https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html • CWE-1420: Exposure of Sensitive Information during Transient Execution •
CVSS: 3.8EPSS: 0%CPEs: 40EXPL: 0CVE-2024-36349
https://notcve.org/view.php?id=CVE-2024-36349
08 Jul 2025 — A transient execution vulnerability in some AMD processors may allow a user process to infer TSC_AUX even when such a read is disabled, potentially resulting in information leakage. • https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7029.html • CWE-1420: Exposure of Sensitive Information during Transient Execution •
CVSS: 6.1EPSS: 0%CPEs: 20EXPL: 0CVE-2024-21981
https://notcve.org/view.php?id=CVE-2024-21981
13 Aug 2024 — Improper key usage control in AMD Secure Processor (ASP) may allow an attacker with local access who has gained arbitrary code execution privilege in ASP to extract ASP cryptographic keys, potentially resulting in loss of confidentiality and integrity. Improper key usage control in AMD Secure Processor (ASP) may allow an attacker with local access who has gained arbitrary code execution privilege in ASP to extract ASP cryptographic keys, potentially resulting in loss of confidentiality and integrity. • https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.html • CWE-639: Authorization Bypass Through User-Controlled Key •