Shodan
Vulnerabilities
Vulnerable Software
Amd:  >> Ryzen 5 5560u Firmware  Security Vulnerabilities
CVE-2021-26368
Insufficient check of the process type in Trusted OS (TOS) may allow an attacker with privileges to enable a lesser privileged process to unmap memory owned by a higher privileged process resulting in a denial of service.
CVSS Score
4.4
EPSS Score
0.0
Published
2022-05-12
CVE-2021-26386
A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader potentially leading to corrupt memory and code execution.
CVSS Score
7.8
EPSS Score
0.001
Published
2022-05-12
CVE-2021-26351
Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA (Direct Memory Access) read/write from/to invalid DRAM address that could result in denial of service.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-05-12
CVE-2021-26361
A malicious or compromised User Application (UApp) or AGESA Boot Loader (ABL) could be used by an attacker to exfiltrate arbitrary memory from the ASP stage 2 bootloader potentially leading to information disclosure.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-05-12
CVE-2021-26362
A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call which results in mapping sensitive System Management Network (SMN) registers leading to a loss of integrity and availability.
CVSS Score
7.1
EPSS Score
0.001
Published
2022-05-12
CVE-2021-26366
An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity.
CVSS Score
7.1
EPSS Score
0.001
Published
2022-05-12
CVE-2021-26339
A bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM, to trigger a CPU core hang resulting in a potential denial of service. AMD believes the specific code includes a specific x86 instruction sequence that would not be generated by compilers.
CVSS Score
5.5
EPSS Score
0.001
Published
2022-05-11
CVE-2021-26388
Improper validation of the BIOS directory may allow for searches to read beyond the directory table copy in RAM, exposing out of bounds memory contents, resulting in a potential denial of service.
CVSS Score
5.5
EPSS Score
0.0
Published
2022-05-11
CVE-2021-26336
Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components.
CVSS Score
5.5
EPSS Score
0.001
Published
2021-11-16


Products
Pricing
Contact Us

Shodan ® - All rights reserved