CVE-2021-26344

An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker with access the ability to modify the BIOS image, and the ability to sign the resulting image, to potentially modify the APCB block resulting in arbitrary code execution.

Published: Aug 13, 2024
Updated: May 4, 2025
CVE: CVE-2021-26344
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 8.2
AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

CWEs:

CWE-787

Affected Software
References

Software	From	Fixed in
amd / epyc_7203_firmware	-	milanpi_1.0.0.5
amd / epyc_7203p_firmware	-	milanpi_1.0.0.5
amd / epyc_72f3_firmware	-	milanpi_1.0.0.5
amd / epyc_7303_firmware	-	milanpi_1.0.0.5
amd / epyc_7303p_firmware	-	milanpi_1.0.0.5
amd / epyc_7313_firmware	-	milanpi_1.0.0.5
amd / epyc_7313p_firmware	-	milanpi_1.0.0.5
amd / epyc_7343_firmware	-	milanpi_1.0.0.5
amd / epyc_73f3_firmware	-	milanpi_1.0.0.5
amd / epyc_7373x_firmware	-	milanpi_1.0.0.5
amd / epyc_7413_firmware	-	milanpi_1.0.0.5
amd / epyc_7443_firmware	-	milanpi_1.0.0.5
amd / epyc_7443p_firmware	-	milanpi_1.0.0.5
amd / epyc_74f3_firmware	-	milanpi_1.0.0.5
amd / epyc_7453_firmware	-	milanpi_1.0.0.5
amd / epyc_7473x_firmware	-	milanpi_1.0.0.5
amd / epyc_7513_firmware	-	milanpi_1.0.0.5
amd / epyc_7543_firmware	-	milanpi_1.0.0.5
amd / epyc_7543p_firmware	-	milanpi_1.0.0.5
amd / epyc_75f3_firmware	-	milanpi_1.0.0.5
amd / epyc_7573x_firmware	-	milanpi_1.0.0.5
amd / epyc_7643_firmware	-	milanpi_1.0.0.5
amd / epyc_7773x_firmware	-	milanpi_1.0.0.5
amd / epyc_7643p_firmware	-	milanpi_1.0.0.5
amd / epyc_7663_firmware	-	milanpi_1.0.0.5
amd / epyc_7663p_firmware	-	milanpi_1.0.0.5
amd / epyc_7713_firmware	-	milanpi_1.0.0.5
amd / epyc_7713p_firmware	-	milanpi_1.0.0.5
amd / epyc_7763_firmware	-	milanpi_1.0.0.5
amd / epyc_7h12_firmware	-	romepi_1.0.0.c
amd / epyc_7f72_firmware	-	romepi_1.0.0.c
amd / epyc_7f52_firmware	-	romepi_1.0.0.c
amd / epyc_7f32_firmware	-	romepi_1.0.0.c
amd / epyc_7742_firmware	-	romepi_1.0.0.c
amd / epyc_7702p_firmware	-	romepi_1.0.0.c
amd / epyc_7702_firmware	-	romepi_1.0.0.c
amd / epyc_7662_firmware	-	romepi_1.0.0.c
amd / epyc_7642_firmware	-	romepi_1.0.0.c
amd / epyc_7552_firmware	-	romepi_1.0.0.c
amd / epyc_7542_firmware	-	romepi_1.0.0.c
amd / epyc_7532_firmware	-	romepi_1.0.0.c
amd / epyc_7502p_firmware	-	romepi_1.0.0.c
amd / epyc_7502_firmware	-	romepi_1.0.0.c
amd / epyc_7452_firmware	-	romepi_1.0.0.c
amd / epyc_7402p_firmware	-	romepi_1.0.0.c
amd / epyc_7402_firmware	-	romepi_1.0.0.c
amd / epyc_7352_firmware	-	romepi_1.0.0.c
amd / epyc_7302p_firmware	-	romepi_1.0.0.c
amd / epyc_7302_firmware	-	romepi_1.0.0.c
amd / epyc_7282_firmware	-	romepi_1.0.0.c
amd / epyc_7272_firmware	-	romepi_1.0.0.c
amd / epyc_7262_firmware	-	romepi_1.0.0.c
amd / epyc_7252_firmware	-	romepi_1.0.0.c
amd / epyc_7232p_firmware	-	romepi_1.0.0.c

https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.html

Vulnerability Database

289,571

CVE-2021-26344