This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Amd First view 2023-05-09
Product Epyc 7543p Firmware Last view 2023-05-09
Version milanpi_1.0.0.9 Type Os
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:o:amd:epyc_7543p_firmware

Activity : Overall

Related : CVE

  Date Alert Description
7.5 2023-05-09 CVE-2022-23818

Insufficient input validation on the model specific register: VM_HSAVE_PA may potentially lead to loss of SEV-SNP guest memory integrity.
6.8 2023-05-09 CVE-2021-46775

Improper input validation in ABL may enable an attacker with physical access, to perform arbitrary memory overwrites, potentially leading to a loss of integrity and code execution.
8.8 2023-05-09 CVE-2021-46769

Insufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to execute arbitrary DMA copies, which can lead to code execution.
7.5 2023-05-09 CVE-2021-46764

Improper validation of DRAM addresses in SMU may allow an attacker to overwrite sensitive memory locations within the ASP potentially resulting in a denial of service.
7.5 2023-05-09 CVE-2021-46763

Insufficient input validation in the SMU may enable a privileged attacker to write beyond the intended bounds of a shared memory buffer potentially leading to a loss of integrity.
9.1 2023-05-09 CVE-2021-46762

Insufficient input validation in the SMU may allow an attacker to corrupt SMU SRAM potentially leading to a loss of integrity or denial of service.
9.1 2023-05-09 CVE-2021-46756

Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the bootloader resulting in a potential denial of service and loss of integrity.

CWE : Common Weakness Enumeration

%idName
71% (5) CWE-20 Improper Input Validation
28% (2) CWE-787 Out-of-bounds Write