Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2021-46771

Insufficient validation of addresses in AMD Secure Processor (ASP) firmware system call may potentially lead to arbitrary code execution by a compromised user application.

  • Published: May 10, 2022
  • Updated: Apr 14, 2023
  • CVE: CVE-2021-46771
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.8
  • AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
amd / epyc_7763_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7713p_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7713_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7663_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7643_firmware - milanpi-sp3_1.0.0.4
amd / epyc_75f3_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7543p_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7543_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7513_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7453_firmware - milanpi-sp3_1.0.0.4
amd / epyc_74f3_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7443p_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7443_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7413_firmware - milanpi-sp3_1.0.0.4
amd / epyc_73f3_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7343_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7313p_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7313_firmware - milanpi-sp3_1.0.0.4
amd / epyc_72f3_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7773x_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7473x_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7573x_firmware - milanpi-sp3_1.0.0.4
amd / epyc_7373x_firmware - milanpi-sp3_1.0.0.4