VYPR

System Management Unit

by AMD

CVEs (15)

  • CVE-2021-26331HigNov 16, 2021
    risk 0.51cvss 7.8epss 0.00

    AMD System Management Unit (SMU) contains a potential issue where a malicious user may be able to manipulate mailbox entries leading to arbitrary code execution.

  • CVE-2021-26338HigNov 16, 2021
    risk 0.49cvss 7.5epss 0.01

    Improper access controls in System Management Unit (SMU) may allow for an attacker to override performance control tables located in DRAM resulting in a potential lack of system resources.

  • CVE-2021-46774MedNov 14, 2023
    risk 0.44cvss 6.7epss 0.01

    Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.

  • CVE-2023-20533MedNov 14, 2023
    risk 0.40cvss 6.1epss 0.01

    Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.

  • CVE-2021-26355MedJan 11, 2023
    risk 0.36cvss 5.5epss 0.00

    Insufficient fencing and checks in System Management Unit (SMU) may result in access to invalid message port registers that could result in a potential denial-of-service.

  • CVE-2021-26351MedMay 12, 2022
    risk 0.36cvss 5.5epss 0.00

    Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA (Direct Memory Access) read/write from/to invalid DRAM address that could result in denial of service.

  • CVE-2021-26378MedMay 11, 2022
    risk 0.36cvss 5.5epss 0.00

    Insufficient bound checks in the System Management Unit (SMU) may result in access to an invalid address space that could result in denial of service.

  • CVE-2021-26376MedMay 11, 2022
    risk 0.36cvss 5.5epss 0.00

    Insufficient checks in System Management Unit (SMU) FeatureConfig may result in reenabling features potentially resulting in denial of resources and/or denial of service.

  • CVE-2021-26375MedMay 11, 2022
    risk 0.36cvss 5.5epss 0.00

    Insufficient General Purpose IO (GPIO) bounds check in System Management Unit (SMU) may result in access/updates from/to invalid address space that could result in denial of service.

  • CVE-2021-26373MedMay 11, 2022
    risk 0.36cvss 5.5epss 0.00

    Insufficient bound checks in the System Management Unit (SMU) may result in a system voltage malfunction that could result in denial of resources and/or possibly denial of service.

  • CVE-2021-26372MedMay 11, 2022
    risk 0.36cvss 5.5epss 0.00

    Insufficient bound checks related to PCIE in the System Management Unit (SMU) may result in access to an invalid address space that could result in denial of service.

  • CVE-2021-26337MedNov 16, 2021
    risk 0.36cvss 5.5epss 0.00

    Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests.

  • CVE-2021-26336MedNov 16, 2021
    risk 0.36cvss 5.5epss 0.00

    Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components.

  • CVE-2021-26330MedNov 16, 2021
    risk 0.36cvss 5.5epss 0.00

    AMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of resources.

  • CVE-2021-26329MedNov 16, 2021
    risk 0.36cvss 5.5epss 0.00

    AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provided which may result in a potential loss of resources.