Description
Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer potentially leading to arbitrary code execution in SMM.
Affected products
- AMD / Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics “Picasso”various – various
- AMD / Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Dali”/”Dali” FP5various – various
- AMD / Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Pollock”various – various
- AMD / Ryzen™ 3000 Series Desktop Processors “Matisse” AM4various – various
- AMD / Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics “Picasso”various – various
- AMD / Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics “Renoir” FP5various – various
- AMD / Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics “Renoir” FP6various – various
- AMD / Ryzen™ 5000 Series Desktop Processors “Vermeer” AM4various – various
- AMD / Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics “Cezanne” AM4various – various
- AMD / Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Cezanne”various – various
- AMD / Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”various – various
- AMD / Ryzen™ 6000 Series Mobile Processors "Rembrandt"various – various
- AMD / Ryzen™ 7000 Series Processors “Raphael”various – various
- AMD / Ryzen™ 7020 Series Mobile Processors “Mendocino”various – various
- AMD / Ryzen™ 7030 Series Mobile Processors “Barcelo”various – various