Amd: >> Epyc 7352 Firmware >> romepi_1.0.0.e Security Vulnerabilities
A TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow
an attacker with ring0 privileges and access to the
BIOS menu or UEFI shell to modify the communications buffer potentially
resulting in arbitrary code execution.
CVSS Score
7.5
EPSS Score
0.0
Published
2024-08-13
Failure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token to force an out-of-bounds memory read potentially resulting in a denial of service.
CVSS Score
1.9
EPSS Score
0.0
Published
2023-11-14
Insufficient DRAM address validation in System
Management Unit (SMU) may allow an attacker to read/write from/to an invalid
DRAM address, potentially resulting in denial-of-service.
CVSS Score
6.7
EPSS Score
0.0
Published
2023-11-14
Insufficient validation of inputs in
SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an
attacker with a malicious Uapp or ABL to send malformed or invalid syscall to
the bootloader resulting in a potential denial of service and loss of
integrity.
CVSS Score
9.1
EPSS Score
0.001
Published
2023-05-09
Insufficient input validation in the SMU may
allow an attacker to corrupt SMU SRAM potentially leading to a loss of
integrity or denial of service.
CVSS Score
3.9
EPSS Score
0.0
Published
2023-05-09
Insufficient input validation in the SMU may
enable a privileged attacker to write beyond the intended bounds of a shared
memory buffer potentially leading to a loss of integrity.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-09
Improper validation of DRAM addresses in SMU may
allow an attacker to overwrite sensitive memory locations within the ASP
potentially resulting in a denial of service.
CVSS Score
7.5
EPSS Score
0.001
Published
2023-05-09
Insufficient syscall input validation in the ASP
Bootloader may allow a privileged attacker to execute arbitrary DMA copies,
which can lead to code execution.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-05-09
Improper input validation in ABL may enable an
attacker with physical access, to perform arbitrary memory overwrites,
potentially leading to a loss of integrity and code execution.
CVSS Score
6.8
EPSS Score
0.001
Published
2023-05-09
Insufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to read memory outside the bounds of a mapped register potentially leading to a denial of service.
CVSS Score
6.5
EPSS Score
0.001
Published
2023-01-11
Page 1