CVE-2021-26360

An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers. This could allow potential corruption of AMD secure processor’s encrypted memory contents which may lead to arbitrary code execution in ASP.

Published: Nov 9, 2022
Updated: Apr 14, 2023
CVE: CVE-2021-26360
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.8
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWEs:

CWE-863

Affected Software
References

Software	From	Fixed in
amd / enterprise_driver	-	22.10.20
amd / radeon_pro_software	-	22.q2
amd / radeon_software	-	22.5.2

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1029

Vulnerability Database

289,599

CVE-2021-26360