Shodan
Vulnerabilities
Vulnerable Software
Amd:  >> Ryzen 9 3900x Firmware  Security Vulnerabilities
CVE-2021-26386
A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader potentially leading to corrupt memory and code execution.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-05-12
CVE-2021-26351
Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA (Direct Memory Access) read/write from/to invalid DRAM address that could result in denial of service.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-05-12
CVE-2021-26366
An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity.
CVSS Score
7.1
EPSS Score
0.001
Published
2022-05-12
CVE-2021-26369
A malicious or compromised UApp or ABL may be used by an attacker to send a malformed system call to the bootloader, resulting in out-of-bounds memory accesses.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-05-12
CVE-2021-26352
Insufficient bound checks in System Management Unit (SMU) PCIe Hot Plug table may result in access/updates from/to invalid address space that could result in denial of service.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-05-10
CVE-2021-26390
A malicious or compromised UApp or ABL may coerce the bootloader into corrupting arbitrary memory potentially leading to loss of integrity of data.
CVSS Score
6.2
EPSS Score
0.001
Published
2022-05-10
CVE-2021-26401
LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs.
CVSS Score
5.6
EPSS Score
0.001
Published
2022-03-11
CVE-2021-26341
Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage.
CVSS Score
6.5
EPSS Score
0.001
Published
2022-03-11
CVE-2021-26336
Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-11-16
CVE-2021-26337
Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-11-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved