CVE-2021-46747

Description

Insufficient granularity of access control in ASP (AMD Secure Processor) may allow an attacker with an untrusted user space application to map sensitive SMN (System Management Network) apertures leading to a potential escalation of privileges.

CVSS breakdown

Affected products

• AMD / AMD Athlon™ 3000 Series Desktop Processors with Radeon™ GraphicsComboAM4v2 PI 1.2.0.8 – ComboAM4v2 PI 1.2.0.8
• AMD / AMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsPicassoPI-FP5 1.0.0.E – PicassoPI-FP5 1.0.0.E
• AMD / AMD Radeon™ PRO V520Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
• AMD / AMD Radeon™ PRO V620Contact your AMD Customer Engineering representative – Contact your AMD Customer Engineering representative
• AMD / AMD Radeon™ PRO W5000 Series Graphics ProductsAMD Software: PRO Edition 25.Q3.1 (25.10.32) – AMD Software: PRO Edition 25.Q3.1 (25.10.32)
• AMD / AMD Radeon™ PRO W6000 Series Graphics ProductsAMD Software: PRO Edition 25.Q3.1 (25.10.32) – AMD Software: PRO Edition 25.Q3.1 (25.10.32)
• AMD / AMD Radeon™ PRO W7000 Series Graphics ProductsAMD Software: PRO Edition 25.Q3.1 (25.10.32) – AMD Software: PRO Edition 25.Q3.1 (25.10.32)
• AMD / AMD Radeon™ RX 5000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.11.1 (25.10.33.03) – AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
• AMD / AMD Radeon™ RX 6000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.11.1 (25.10.33.03) – AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
• AMD / AMD Radeon™ RX 7000 Series Graphics ProductsAMD Software: Adrenalin Edition 25.11.1 (25.10.33.03) – AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
• AMD / AMD Ryzen™ 3000 Series Desktop ProcessorsComboAM4PI 1.0.0.9/ComboAM4 V2 PI 1.2.0.8 – ComboAM4PI 1.0.0.9/ComboAM4 V2 PI 1.2.0.8
• AMD / AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ GraphicsPicassoPI-FP5 1.0.0.E – PicassoPI-FP5 1.0.0.E
• AMD / AMD Ryzen™ 4000 Series Desktop ProcessorsComboAM4v2 PI 1.2.0.6 – ComboAM4v2 PI 1.2.0.6
• AMD / AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ GraphicsRenoirPI-FP6 1.0.0.8 – RenoirPI-FP6 1.0.0.8
• AMD / AMD Ryzen™ 5000 Series Desktop ProcessorsComboAM4 V2 PI 1.2.0.8 – ComboAM4 V2 PI 1.2.0.8
• AMD / AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ GraphicsComboAM4v2 PI 1.2.0.6 – ComboAM4v2 PI 1.2.0.6
• AMD / AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsCezannePI-FP6 1.0.0.9 – CezannePI-FP6 1.0.0.9
• AMD / AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ GraphicsCezannePI-FP6 1.0.0.9 – CezannePI-FP6 1.0.0.9
• AMD / AMD Ryzen™ Embedded 5000 Series ProcessorsEmbAM4PI 1.0.0.2 – EmbAM4PI 1.0.0.2
• AMD / AMD Ryzen™ Embedded R1000 Series ProcessorsEmbeddedPI-FP5_1.2.0.A – EmbeddedPI-FP5_1.2.0.A
• AMD / AMD Ryzen™ Embedded R2000 Series ProcessorsEmbeddedPI-FP5_1002 – EmbeddedPI-FP5_1002
• AMD / AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso")EmbeddedPI-FP5_1.2.0.A – EmbeddedPI-FP5_1.2.0.A
• AMD / AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge")EmbeddedPI-FP5_1.2.0.A – EmbeddedPI-FP5_1.2.0.A
• AMD / AMD Ryzen™ Embedded V2000 Series ProcessorsEmbeddedPI-FP6_1.0.0.6 – EmbeddedPI-FP6_1.0.0.6
• AMD / AMD Ryzen™ Embedded V3000 Series ProcessorsEmbeddedPI-FP7r2_0080 – EmbeddedPI-FP7r2_0080
• AMD / AMD Ryzen™ Threadripper™ PRO 3000 WX-Series ProcessorsCastlePeakWSPI-sWRX8 1.0.0.9 – CastlePeakWSPI-sWRX8 1.0.0.9
• AMD / AMD Ryzen™ Threadripper™ PRO 3000 WX-Series ProcessorsChagallWSPI-sWRX8 1.0.0.2 – ChagallWSPI-sWRX8 1.0.0.2
• AMD / AMD Ryzen™ Threadripper™ PRO 5000 WX-Series ProcessorsChagallWSPI-sWRX8 1.0.0.1 – ChagallWSPI-sWRX8 1.0.0.1

References

• MISChttps://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html
• MISChttps://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6027.html