CVE-2021-26367

Description

A malicious attacker in x86 can misconfigure the Trusted Memory Regions (TMRs), which may allow the attacker to set an arbitrary address range for the TMR, potentially leading to a loss of integrity and availability.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

High

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

Affected products

AMD / AMD Athlon™ 3000 Series Desktop Processors with Radeon™ GraphicsComboAM4PI 1.0.0.9 – ComboAM4PI 1.0.0.9
AMD / AMD Athlon™ 3000 Series Desktop Processors with Radeon™ GraphicsComboAM4v2 PI 1.2.0.8 – ComboAM4v2 PI 1.2.0.8
AMD / AMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsPollockPI-FT5 1.0.0.4 – PollockPI-FT5 1.0.0.4
AMD / AMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsPicassoPI-FP5 1.0.0.E – PicassoPI-FP5 1.0.0.E
AMD / AMD Radeon™ PRO W6000 Series Graphics CardsAMD Software: PRO Edition 23.Q4 (23.30.13.03) – AMD Software: PRO Edition 23.Q4 (23.30.13.03)
AMD / AMD Radeon™ RX 6000 Series Graphics CardsAMD Software: Adrenalin Edition 23.12.1 (23.30.13.01) – AMD Software: Adrenalin Edition 23.12.1 (23.30.13.01)
AMD / AMD Ryzen™ 3000 Series Mobile Processor with Radeon™ GraphicsPicassoPI-FP5 1.0.0.E – PicassoPI-FP5 1.0.0.E
AMD / AMD Ryzen™ 3000 Series Processors with Radeon™ GraphicsCezannePI-FP6 1.0.0.6 – CezannePI-FP6 1.0.0.6
AMD / AMD Ryzen™ 4000 Series Desktop Processors with Radeon™ GraphicsComboAM4v2 PI 1.2.0.5 – ComboAM4v2 PI 1.2.0.5
AMD / AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ GraphicsRenoirPI-FP6 1.0.0.7 – RenoirPI-FP6 1.0.0.7
AMD / AMD Ryzen™ 5000 Series Desktop Processor with Radeon™ GraphicsComboAM4v2 PI 1.2.0.5 – ComboAM4v2 PI 1.2.0.5
AMD / AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsCezannePI-FP6 1.0.0.6 – CezannePI-FP6 1.0.0.6
AMD / AMD Ryzen™ 5000 Series Processors with Radeon™ GraphicsCezannePI-FP6 1.0.0.6 – CezannePI-FP6 1.0.0.6
AMD / AMD Ryzen™ Embedded R1000 Series ProcessorsEmbeddedPI-FP5 1.2.0.A – EmbeddedPI-FP5 1.2.0.A
AMD / AMD Ryzen™ Embedded R2000 Series ProcessorsEmbeddedR2KPI-FP5 1.0.0.2 – EmbeddedR2KPI-FP5 1.0.0.2
AMD / AMD Ryzen™ Embedded V1000 Series ProcessorsEmbeddedPI-FP5 1.2.0.A – EmbeddedPI-FP5 1.2.0.A
AMD / AMD Ryzen™ Embedded V2000 Series ProcessorsEmbeddedPI-FP6 1.0.0.6 – EmbeddedPI-FP6 1.0.0.6

CVE-2021-26367

Description

CVSS breakdown

Affected products

References