Amd: Security Vulnerabilities
A weakness was found in Encrypt Only boot mode in Zynq UltraScale+ devices. This could lead to an adversary being able to modify the control fields of the boot image leading to an incorrect secure boot behavior.
CVSS Score
5.5
EPSS Score
0.0
Published
2019-09-03
Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and earlier has an insecure cryptographic implementation.
CVSS Score
5.3
EPSS Score
0.003
Published
2019-06-25
The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips allow Platform Security Processor (PSP) privilege escalation.
CVSS Score
9.0
EPSS Score
0.006
Published
2018-03-22
The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3.
CVSS Score
9.0
EPSS Score
0.006
Published
2018-03-22
The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-1.
CVSS Score
9.0
EPSS Score
0.005
Published
2018-03-22
The AMD Ryzen and Ryzen Pro processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-2, RYZENFALL-3, and RYZENFALL-4.
CVSS Score
9.0
EPSS Score
0.005
Published
2018-03-22
The AMD EPYC Server processor chips have insufficient access control for protected memory regions, aka FALLOUT-1, FALLOUT-2, and FALLOUT-3.
CVSS Score
9.0
EPSS Score
0.005
Published
2018-03-22
The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in firmware, aka CHIMERA-FW.
CVSS Score
9.0
EPSS Score
0.006
Published
2018-03-22
The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in the ASIC, aka CHIMERA-HW.
CVSS Score
9.0
EPSS Score
0.006
Published
2018-03-22
AMD fglrx-driver before 15.7 allows local users to gain privileges via a symlink attack.
CVSS Score
7.8
EPSS Score
0.0
Published
2017-06-07