VYPR
Unrated severityNVD Advisory· Published Nov 9, 2022· Updated Sep 16, 2024

CVE-2021-26393

CVE-2021-26393

Description

Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poison the contents of the process memory with attacker controlled data resulting in a loss of confidentiality.

Affected products

7
  • AMD/AMD Radeon RX 5000 Series & PRO W5000 Seriesv5
    Range: AMD Radeon Software
  • AMD/AMD Radeon RX 6000 Series & PRO W6000 Seriesv5
    Range: AMD Radeon Software
  • AMD/AMD Ryzen™ Embedded R1000v5
    Range: various
  • AMD/AMD Ryzen™ Embedded R2000v5
    Range: various
  • AMD/AMD Ryzen™ Embedded V1000v5
    Range: various
  • AMD/AMD Ryzen™ Embedded V2000v5
    Range: various

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.