Low severity3.9NVD Advisory· Published Aug 13, 2024· Updated Apr 15, 2026

CVE-2021-46772

Description

Insufficient input validation in the ABL may allow a privileged attacker with access to the BIOS menu or UEFI shell to tamper with the structure headers in SPI ROM causing an out of bounds memory read and write, potentially resulting in memory corruption or denial of service.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.htmlnvd
www.amd.com/en/resources/product-security/bulletin/amd-sb-4004.htmlnvd
www.amd.com/en/resources/product-security/bulletin/amd-sb-5002.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.254
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000