VYPR
Vendor

Amd.com

Products
5
CVEs
5
Across products
5
Status
Private

Products

5

Recent CVEs

5
  • CVE-2021-26391HigNov 9, 2022
    risk 0.51cvss 7.8epss 0.00

    Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.

  • CVE-2021-26353HigMay 10, 2022
    risk 0.51cvss 7.8epss 0.00

    Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRTM UApp in a partially initialized state potentially resulting in loss of memory integrity.

  • CVE-2021-26362HigMay 12, 2022
    risk 0.46cvss 7.1epss 0.00

    A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call which results in mapping sensitive System Management Network (SMN) registers leading to a loss of integrity and availability.

  • CVE-2021-26352MedMay 10, 2022
    risk 0.36cvss 5.5epss 0.00

    Insufficient bound checks in System Management Unit (SMU) PCIe Hot Plug table may result in access/updates from/to invalid address space that could result in denial of service.

  • CVE-2021-26363MedMay 12, 2022
    risk 0.29cvss 4.4epss 0.00

    A malicious or compromised UApp or ABL could potentially change the value that the ASP uses for its reserved DRAM, to one outside of the fenced area, potentially leading to data exposure.