CVE-2021-46760
Severity Score
9.8
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Attend
*SSVC
Descriptions
A malicious or compromised UApp or ABL can send
a malformed system call to the bootloader, which may result in an out-of-bounds
memory access that may potentially lead to an attacker leaking sensitive
information or achieving code execution.
A malicious or compromised UApp or ABL can send a malformed system call to the bootloader, which may result in an out-of-bounds memory access that may potentially lead to an attacker leaking sensitive information or achieving code execution.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Attend
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2022-03-31 CVE Reserved
- 2023-05-09 CVE Published
- 2025-01-27 CVE Updated
- 2025-03-30 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
- CWE-770: Allocation of Resources Without Limits or Throttling
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4001 | 2023-05-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Amd Search vendor "Amd" | Ryzen 3945wx Firmware Search vendor "Amd" for product "Ryzen 3945wx Firmware" | castlepeakwspi-swrx8_1.0.0.9 Search vendor "Amd" for product "Ryzen 3945wx Firmware" and version "castlepeakwspi-swrx8_1.0.0.9" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3945wx Search vendor "Amd" for product "Ryzen 3945wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3955wx Firmware Search vendor "Amd" for product "Ryzen 3955wx Firmware" | castlepeakwspi-swrx8_1.0.0.9 Search vendor "Amd" for product "Ryzen 3955wx Firmware" and version "castlepeakwspi-swrx8_1.0.0.9" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3955wx Search vendor "Amd" for product "Ryzen 3955wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3960x Firmware Search vendor "Amd" for product "Ryzen 3960x Firmware" | castlepeakwspi-swrx8_1.0.0.9 Search vendor "Amd" for product "Ryzen 3960x Firmware" and version "castlepeakwspi-swrx8_1.0.0.9" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3960x Search vendor "Amd" for product "Ryzen 3960x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3970x Firmware Search vendor "Amd" for product "Ryzen 3970x Firmware" | castlepeakwspi-swrx8_1.0.0.9 Search vendor "Amd" for product "Ryzen 3970x Firmware" and version "castlepeakwspi-swrx8_1.0.0.9" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3970x Search vendor "Amd" for product "Ryzen 3970x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3975wx Firmware Search vendor "Amd" for product "Ryzen 3975wx Firmware" | castlepeakwspi-swrx8_1.0.0.9 Search vendor "Amd" for product "Ryzen 3975wx Firmware" and version "castlepeakwspi-swrx8_1.0.0.9" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3975wx Search vendor "Amd" for product "Ryzen 3975wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3990x Firmware Search vendor "Amd" for product "Ryzen 3990x Firmware" | castlepeakwspi-swrx8_1.0.0.9 Search vendor "Amd" for product "Ryzen 3990x Firmware" and version "castlepeakwspi-swrx8_1.0.0.9" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3990x Search vendor "Amd" for product "Ryzen 3990x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3995wx Firmware Search vendor "Amd" for product "Ryzen 3995wx Firmware" | castlepeakwspi-swrx8_1.0.0.9 Search vendor "Amd" for product "Ryzen 3995wx Firmware" and version "castlepeakwspi-swrx8_1.0.0.9" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3995wx Search vendor "Amd" for product "Ryzen 3995wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3945wx Firmware Search vendor "Amd" for product "Ryzen 3945wx Firmware" | chagallwspi-swrx8_1.0.0.2 Search vendor "Amd" for product "Ryzen 3945wx Firmware" and version "chagallwspi-swrx8_1.0.0.2" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3945wx Search vendor "Amd" for product "Ryzen 3945wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3955wx Firmware Search vendor "Amd" for product "Ryzen 3955wx Firmware" | chagallwspi-swrx8_1.0.0.2 Search vendor "Amd" for product "Ryzen 3955wx Firmware" and version "chagallwspi-swrx8_1.0.0.2" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3955wx Search vendor "Amd" for product "Ryzen 3955wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3960x Firmware Search vendor "Amd" for product "Ryzen 3960x Firmware" | chagallwspi-swrx8_1.0.0.2 Search vendor "Amd" for product "Ryzen 3960x Firmware" and version "chagallwspi-swrx8_1.0.0.2" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3960x Search vendor "Amd" for product "Ryzen 3960x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3970x Firmware Search vendor "Amd" for product "Ryzen 3970x Firmware" | chagallwspi-swrx8_1.0.0.2 Search vendor "Amd" for product "Ryzen 3970x Firmware" and version "chagallwspi-swrx8_1.0.0.2" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3970x Search vendor "Amd" for product "Ryzen 3970x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3975wx Firmware Search vendor "Amd" for product "Ryzen 3975wx Firmware" | chagallwspi-swrx8_1.0.0.2 Search vendor "Amd" for product "Ryzen 3975wx Firmware" and version "chagallwspi-swrx8_1.0.0.2" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3975wx Search vendor "Amd" for product "Ryzen 3975wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3990x Firmware Search vendor "Amd" for product "Ryzen 3990x Firmware" | chagallwspi-swrx8_1.0.0.2 Search vendor "Amd" for product "Ryzen 3990x Firmware" and version "chagallwspi-swrx8_1.0.0.2" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3990x Search vendor "Amd" for product "Ryzen 3990x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3995wx Firmware Search vendor "Amd" for product "Ryzen 3995wx Firmware" | chagallwspi-swrx8_1.0.0.2 Search vendor "Amd" for product "Ryzen 3995wx Firmware" and version "chagallwspi-swrx8_1.0.0.2" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3995wx Search vendor "Amd" for product "Ryzen 3995wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3945wx Firmware Search vendor "Amd" for product "Ryzen 3945wx Firmware" | castlepeakpi-sp3r3_1.0.0.7 Search vendor "Amd" for product "Ryzen 3945wx Firmware" and version "castlepeakpi-sp3r3_1.0.0.7" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3945wx Search vendor "Amd" for product "Ryzen 3945wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3955wx Firmware Search vendor "Amd" for product "Ryzen 3955wx Firmware" | castlepeakpi-sp3r3_1.0.0.7 Search vendor "Amd" for product "Ryzen 3955wx Firmware" and version "castlepeakpi-sp3r3_1.0.0.7" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3955wx Search vendor "Amd" for product "Ryzen 3955wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3960x Firmware Search vendor "Amd" for product "Ryzen 3960x Firmware" | castlepeakpi-sp3r3_1.0.0.7 Search vendor "Amd" for product "Ryzen 3960x Firmware" and version "castlepeakpi-sp3r3_1.0.0.7" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3960x Search vendor "Amd" for product "Ryzen 3960x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3970x Firmware Search vendor "Amd" for product "Ryzen 3970x Firmware" | castlepeakpi-sp3r3_1.0.0.7 Search vendor "Amd" for product "Ryzen 3970x Firmware" and version "castlepeakpi-sp3r3_1.0.0.7" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3970x Search vendor "Amd" for product "Ryzen 3970x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3975wx Firmware Search vendor "Amd" for product "Ryzen 3975wx Firmware" | castlepeakpi-sp3r3_1.0.0.7 Search vendor "Amd" for product "Ryzen 3975wx Firmware" and version "castlepeakpi-sp3r3_1.0.0.7" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3975wx Search vendor "Amd" for product "Ryzen 3975wx" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3990x Firmware Search vendor "Amd" for product "Ryzen 3990x Firmware" | castlepeakpi-sp3r3_1.0.0.7 Search vendor "Amd" for product "Ryzen 3990x Firmware" and version "castlepeakpi-sp3r3_1.0.0.7" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3990x Search vendor "Amd" for product "Ryzen 3990x" | - | - |
Safe
|
| Amd Search vendor "Amd" | Ryzen 3995wx Firmware Search vendor "Amd" for product "Ryzen 3995wx Firmware" | castlepeakpi-sp3r3_1.0.0.7 Search vendor "Amd" for product "Ryzen 3995wx Firmware" and version "castlepeakpi-sp3r3_1.0.0.7" | - |
Affected
| in | Amd Search vendor "Amd" | Ryzen 3995wx Search vendor "Amd" for product "Ryzen 3995wx" | - | - |
Safe
|