Unrated severityNVD Advisory· Published May 9, 2023· Updated Jan 28, 2025
CVE-2021-46794
CVE-2021-46794
Description
Insufficient bounds checking in ASP (AMD Secure Processor) may allow for an out of bounds read in SMI (System Management Interface) mailbox checksum calculation triggering a data abort, resulting in a potential denial of service.
Affected products
15- AMD/3rd Gen AMD Ryzen™ Threadripper™ Processors “Castle Peak” HEDTv5Range: various
- AMD/AMD Ryzen™ 5000 Series Desktop Processors “Vermeer” AM4v5Range: various
- AMD/Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Dali”/”Dali” ULPv5Range: various
- AMD/Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Pollock”v5Range: various
- AMD/Ryzen™ 2000 series Desktop Processors “Raven Ridge” AM4v5Range: various
- AMD/Ryzen™ 2000 Series Mobile Processors “Raven Ridge” FP5v5Range: various
- AMD/Ryzen™ 3000 Series Desktop Processors “Matisse” AM4v5Range: various
- AMD/Ryzen™ 3000 Series Mobile processor, 2nd Gen AMD Ryzen™ Mobile Processors with Radeon™ Graphics “Picasso”v5Range: various
- AMD/Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics “Renoir”v5Range: various
- AMD/Ryzen™ 5000 Series Desktop processor with Radeon™ Graphics “Cezanne” AM4v5Range: Various
- AMD/Ryzen™ 5000 Series Mobile processors with Radeon™ Graphics “Cezanne”v5Range: various
- AMD/Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”v5Range: various
- AMD/Ryzen™ Threadripper™ PRO Processors “Castle Peak” WSv5Range: various
- AMD/Ryzen™ Threadripper™ PRO Processors “Chagall” WSv5Range: various
Patches
Vulnerability mechanics
References
1- www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4001mitrevendor-advisory
News mentions
0No linked articles in our index yet.