Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
409
VMScore

CVE-2021-26315

Published: 16/11/2021 Updated: 18/11/2021
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
CVSS v3 Base Score: 7.8 | Impact Score: 5.9 | Exploitability Score: 1.8
VMScore: 409
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

When the AMD Platform Security Processor (PSP) boot rom loads, authenticates, and subsequently decrypts an encrypted FW, due to insufficient verification of the integrity of decrypted image, arbitrary code may be executed in the PSP when encrypted firmware images are used.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

amd epyc_7003_firmware

amd epyc_72f3_firmware

amd epyc_7313_firmware

amd epyc_7313p_firmware

amd epyc_7343_firmware

amd epyc_73f3_firmware

amd epyc_7413_firmware

amd epyc_7443_firmware

amd epyc_7443p_firmware

amd epyc_7453_firmware

amd epyc_74f3_firmware

amd epyc_7513_firmware

amd epyc_7543_firmware

amd epyc_7543p_firmware

amd epyc_75f3_firmware

amd epyc_7643_firmware

amd epyc_7663_firmware

amd epyc_7713_firmware

amd epyc_7713p_firmware

amd epyc_7763_firmware

References

CWE-345https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypassCVE-2024-30043cameraCVE-2023-40404CVE-2024-2793client sideCVE-2024-4469CVE-2024-3565CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook