Vulnerability Details CVE-2021-46757
Insufficient checking of memory buffer in ASP
Secure OS may allow an attacker with a malicious TA to read/write to the ASP
Secure OS kernel virtual address space potentially leading to privilege
escalation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 23.3%
CVSS Severity
CVSS v3 Score 7.8
References
Products affected by CVE-2021-46757
-
cpe:2.3:h:amd:ryzen_embedded_5600e:-
-
cpe:2.3:h:amd:ryzen_embedded_5800e:-
-
cpe:2.3:h:amd:ryzen_embedded_5900e:-
-
cpe:2.3:h:amd:ryzen_embedded_5950e:-
-
cpe:2.3:h:amd:ryzen_embedded_r2312:-
-
cpe:2.3:h:amd:ryzen_embedded_r2314:-
-
cpe:2.3:h:amd:ryzen_embedded_v2516:-
-
cpe:2.3:h:amd:ryzen_embedded_v2546:-
-
cpe:2.3:h:amd:ryzen_embedded_v2718:-
-
cpe:2.3:h:amd:ryzen_embedded_v2748:-
-
cpe:2.3:o:amd:ryzen_embedded_5600e_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_5800e_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_5900e_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_5950e_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_r2312_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_r2314_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_v2516_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_v2546_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_v2718_firmware:*
-
cpe:2.3:o:amd:ryzen_embedded_v2748_firmware:*