Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-46758

Insufficient validation of SPI flash addresses in the ASP (AMD Secure Processor) bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity.

Published

2023-11-14T19:15:10.310

Last Modified

2024-11-21T06:34:39.233

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.1 (MEDIUM)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	amd	ryzen_7_5700g_firmware	< comboam4v2_pi_1.2.0.8	Yes
Hardware	amd	ryzen_7_5700g	-	No
Operating System	amd	ryzen_7_5700ge_firmware	< comboam4v2_pi_1.2.0.8	Yes
Hardware	amd	ryzen_7_5700ge	-	No
Operating System	amd	ryzen_5_5600g_firmware	< comboam4v2_pi_1.2.0.8	Yes
Hardware	amd	ryzen_5_5600g	-	No
Operating System	amd	ryzen_5_5600ge_firmware	< comboam4v2_pi_1.2.0.8	Yes
Hardware	amd	ryzen_5_5600ge	-	No
Operating System	amd	ryzen_3_5300g_firmware	< comboam4v2_pi_1.2.0.8	Yes
Hardware	amd	ryzen_3_5300g	-	No
Operating System	amd	ryzen_3_5300ge_firmware	< comboam4v2_pi_1.2.0.8	Yes
Hardware	amd	ryzen_3_5300ge	-	No
Operating System	amd	ryzen_9_7950x3d_firmware	< comboam5_1.0.0.1	Yes
Hardware	amd	ryzen_9_7950x3d	-	No
Operating System	amd	ryzen_9_7900x3d_firmware	< comboam5_1.0.0.1	Yes
Hardware	amd	ryzen_9_7900x3d	-	No
Operating System	amd	ryzen_7_7800x3d_firmware	< comboam5_1.0.0.1	Yes
Hardware	amd	ryzen_7_7800x3d	-	No
Operating System	amd	ryzen_9_4900h_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_9_4900h	-	No
Operating System	amd	ryzen_9_4900hs_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_9_4900hs	-	No
Operating System	amd	ryzen_7_4800h_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_7_4800h	-	No
Operating System	amd	ryzen_7_4800hs_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_7_4800hs	-	No
Operating System	amd	ryzen_7_4980u_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_7_4980u	-	No
Operating System	amd	ryzen_7_4800u_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_7_4800u	-	No
Operating System	amd	ryzen_7_4700u_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_7_4700u	-	No
Operating System	amd	ryzen_5_4600h_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_5_4600h	-	No
Operating System	amd	ryzen_5_4600hs_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_5_4600hs	-	No
Operating System	amd	ryzen_5_4680u_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_5_4680u	-	No
Operating System	amd	ryzen_5_4600u_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_5_4600u	-	No
Operating System	amd	ryzen_5_4500u_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_5_4500u	-	No
Operating System	amd	ryzen_3_4300u_firmware	< renoirpi-fp6_1.0.0.a	Yes
Hardware	amd	ryzen_3_4300u	-	No
Operating System	amd	ryzen_7_5700u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_7_5700u	-	No
Operating System	amd	ryzen_5_5500u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_5_5500u	-	No
Operating System	amd	ryzen_3_5300u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_3_5300u	-	No
Operating System	amd	ryzen_9_5980hx_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_9_5980hx	-	No
Operating System	amd	ryzen_9_5980hs_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_9_5980hs	-	No
Operating System	amd	ryzen_9_5900hx_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_9_5900hx	-	No
Operating System	amd	ryzen_9_5900hs_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_9_5900hs	-	No
Operating System	amd	ryzen_7_5800h_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_7_5800h	-	No
Operating System	amd	ryzen_7_5800hs_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_7_5800hs	-	No
Operating System	amd	ryzen_7_5825u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_7_5825u	-	No
Operating System	amd	ryzen_7_5800u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_7_5800u	-	No
Operating System	amd	ryzen_5_5600h_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_5_5600h	-	No
Operating System	amd	ryzen_5_5600hs_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_5_5600hs	-	No
Operating System	amd	ryzen_5_5625u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_5_5625u	-	No
Operating System	amd	ryzen_5_5600u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_5_5600u	-	No
Operating System	amd	ryzen_5_5560u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_5_5560u	-	No
Operating System	amd	ryzen_5_5500h_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_5_5500h	-	No
Operating System	amd	ryzen_3_5425u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_3_5425u	-	No
Operating System	amd	ryzen_3_5400u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_3_5400u	-	No
Operating System	amd	ryzen_3_5125c_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_3_5125c	-	No
Operating System	amd	ryzen_9_6980hx_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_9_6980hx	-	No
Operating System	amd	ryzen_9_6980hs_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_9_6980hs	-	No
Operating System	amd	ryzen_9_6900hx_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_9_6900hx	-	No
Operating System	amd	ryzen_9_6900hs_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_9_6900hs	-	No
Operating System	amd	ryzen_7_6800h_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_7_6800h	-	No
Operating System	amd	ryzen_7_6800hs_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_7_6800hs	-	No
Operating System	amd	ryzen_7_6800u_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_7_6800u	-	No
Operating System	amd	ryzen_5_6600h_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_5_6600h	-	No
Operating System	amd	ryzen_5_6600hs_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_5_6600hs	-	No
Operating System	amd	ryzen_5_6600u_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_5_6600u	-	No
Operating System	amd	ryzen_7_7735hs_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_7_7735hs	-	No
Operating System	amd	ryzen_7_7736u_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_7_7736u	-	No
Operating System	amd	ryzen_7_7735u_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_7_7735u	-	No
Operating System	amd	ryzen_5_7535hs_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_5_7535hs	-	No
Operating System	amd	ryzen_5_7535u_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_5_7535u	-	No
Operating System	amd	ryzen_3_7335u_firmware	< rembrandtpi-fp7_1.0.0.5	Yes
Hardware	amd	ryzen_3_7335u	-	No
Operating System	amd	ryzen_7_pro_7730u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_7_pro_7730u	-	No
Operating System	amd	ryzen_5_pro_7530u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_5_pro_7530u	-	No
Operating System	amd	ryzen_3_pro_7330u_firmware	< cezannepi-fp6_1.0.0.c	Yes
Hardware	amd	ryzen_3_pro_7330u	-	No

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 Vendor Advisory ([email protected])
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)