Unrated severityNVD Advisory· Published Nov 9, 2022· Updated Sep 16, 2024
CVE-2021-26393
CVE-2021-26393
Description
Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poison the contents of the process memory with attacker controlled data resulting in a loss of confidentiality.
Affected products
7- AMD/AMD Radeon RX 5000 Series & PRO W5000 Seriesv5Range: AMD Radeon Software
- AMD/AMD Radeon RX 6000 Series & PRO W6000 Seriesv5Range: AMD Radeon Software
- AMD/AMD Ryzen™ Embedded R1000v5Range: various
- AMD/AMD Ryzen™ Embedded R2000v5Range: various
- AMD/AMD Ryzen™ Embedded V1000v5Range: various
- AMD/AMD Ryzen™ Embedded V2000v5Range: various
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.