ByteOS

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-6.7||MEDIUM

EPSS-0.07% / 21.00%

7 Day CHG~0.00%

Published-18 May, 2020 | 15:56

Updated-04 Aug, 2024 | 20:46

An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys/Overclocking Utility 5.11.9.0. The vulnerable driver exposes a wrmsr instruction and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.

Vendor-n/a Advanced Micro Devices, Inc.

Product-atillk64 n/a

CVE-2020-12898

Matching Score-8

Matching Score-8

CVSS Score-7.8||HIGH

EPSS-0.18% / 38.83%

7 Day CHG~0.00%

Published-15 Nov, 2021 | 18:58

Updated-17 Sep, 2024 | 03:03

Stack Buffer Overflow in AMD Graphics Driver for Windows 10 may lead to escalation of privilege or denial of service.

Vendor-Advanced Micro Devices, Inc.Microsoft Corporation

Product-radeon_software windows_10 AMD Radeon Software

CWE ID-CWE-787

Out-of-bounds Write

CVE-2024-21937

Matching Score-8

Matching Score-8

CVSS Score-7.3||HIGH

EPSS-0.10% / 27.23%

7 Day CHG~0.00%

Published-12 Nov, 2024 | 17:14

Updated-27 Nov, 2024 | 16:20

Incorrect default permissions in the AMD HIP SDK installation directory could allow an attacker to achieve privilege escalation potentially resulting in arbitrary code execution.

Product-radeon_software radeon_software_for_hip AMD Software: PRO Edition AMD Software: Adrenalin Edition AMD Software: Cloud Edition amd_software_cloud_edition amd_software_adrenalin_edition amd_software_pro_edition

CWE ID-CWE-276

Incorrect Default Permissions

CVE-2024-21938

Matching Score-8

Matching Score-8

CVSS Score-7.3||HIGH

EPSS-0.10% / 27.23%

7 Day CHG~0.00%

Published-12 Nov, 2024 | 17:14

Updated-18 Dec, 2024 | 19:00

Incorrect default permissions in the AMD Management Plugin for the Microsoft® System Center Configuration Manager (SCCM) installation directory could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.

Product-management_plugin_for_sccm AMD Management Plug-In for SCCM management_plugin_for_sccm

CWE ID-CWE-276

Incorrect Default Permissions

CVE-2023-31366

Matching Score-6

Matching Score-6

CVSS Score-3.3||LOW

EPSS-0.11% / 28.56%

7 Day CHG~0.00%

Published-13 Aug, 2024 | 16:57

Updated-12 Dec, 2024 | 01:21

Improper input validation in AMD μProf could allow an attacker to perform a write to an invalid address, potentially resulting in denial of service.

Product-uprof μProf Tool

CWE ID-CWE-20

Improper Input Validation

CVE-2023-20522

Matching Score-6

Matching Score-6

CVSS Score-7.5||HIGH

EPSS-0.39% / 60.38%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:56

Updated-07 Apr, 2025 | 16:15

Insufficient input validation in ASP may allow an attacker with a malicious BIOS to potentially cause a denial of service.

Product-milanpi romepi milanpi_firmware romepi_firmware 3rd Gen EPYC 2nd Gen EPYC

CWE ID-CWE-20

Improper Input Validation

CVE-2023-20560

Matching Score-6

Matching Score-6

CVSS Score-4.4||MEDIUM

EPSS-0.03% / 7.81%

7 Day CHG~0.00%

Published-15 Aug, 2023 | 21:08

Updated-08 Oct, 2024 | 19:29

Insufficient validation of the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may allow a privileged attacker to provide a null value potentially resulting in a Windows crash leading to denial of service.

Vendor-Advanced Micro Devices, Inc.Microsoft Corporation

Product-ryzen_master_monitoring_sdk windows_11 ryzen_master windows_10 Ryzen™ Master

CWE ID-CWE-20

Improper Input Validation

CVE-2023-20527

Matching Score-6

Matching Score-6

CVSS Score-6.5||MEDIUM

EPSS-0.30% / 54.00%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:57

Updated-07 Apr, 2025 | 16:15

Improper syscall input validation in the ASP Bootloader may allow a privileged attacker to read memory out-of-bounds, potentially leading to a denial-of-service.

Product-epyc_7702_firmware epyc_7453 epyc_7601_firmware epyc_7702p_firmware epyc_7413_firmware epyc_7f52 epyc_7251_firmware epyc_7763_firmware epyc_7551p_firmware epyc_7f32 epyc_7773x_firmware epyc_7h12_firmware epyc_75f3 epyc_7443_firmware epyc_7642_firmware epyc_7551_firmware epyc_7313p epyc_7f72_firmware epyc_7401p_firmware epyc_7573x epyc_7413 epyc_7371_firmware epyc_7h12 epyc_7f72 epyc_7743_firmware epyc_7451 epyc_72f3 epyc_7371 epyc_74f3_firmware epyc_7502_firmware epyc_7543_firmware epyc_7402p_firmware epyc_7373x epyc_7232p epyc_7452 epyc_7261_firmware epyc_7302p epyc_73f3_firmware epyc_7702 epyc_7551p epyc_7401p epyc_7663 epyc_7543 epyc_7662_firmware epyc_7252_firmware epyc_7301_firmware epyc_7313 epyc_7002 epyc_74f3 epyc_7272 epyc_7713p epyc_7453_firmware epyc_7552 epyc_7502p epyc_7713 epyc_7343_firmware epyc_7302 epyc_7232p_firmware epyc_7302_firmware epyc_7551 epyc_7443 epyc_7542 epyc_7513 epyc_7373x_firmware epyc_7352 epyc_7573x_firmware epyc_7302p_firmware epyc_7742 epyc_7252 epyc_7542_firmware epyc_7262 epyc_72f3_firmware epyc_7443p_firmware epyc_7001_firmware epyc_7402 epyc_7702p epyc_7443p epyc_7f32_firmware epyc_7552_firmware epyc_7251 epyc_7402p epyc_7543p epyc_7601 epyc_7642 epyc_7532 epyc_7502p_firmware epyc_7272_firmware epyc_7663_firmware epyc_7501 epyc_7763 epyc_7643 epyc_7502 epyc_7501_firmware epyc_7301 epyc_7643_firmware epyc_7262_firmware epyc_7352_firmware epyc_7532_firmware epyc_7351 epyc_7282_firmware epyc_7401_firmware epyc_7743 epyc_7351_firmware epyc_7452_firmware epyc_7281_firmware epyc_7401 epyc_7543p_firmware epyc_7773x epyc_7001 epyc_7451_firmware epyc_7f52_firmware epyc_7261 epyc_7313p_firmware epyc_7002_firmware epyc_7003 epyc_7003_firmware epyc_7313_firmware epyc_7281 epyc_7402_firmware epyc_75f3_firmware epyc_7343 epyc_7662 epyc_7713p_firmware epyc_73f3 epyc_7713_firmware epyc_7742_firmware epyc_7282 epyc_7513_firmware 1st Gen EPYC 3rd Gen EPYC 2nd Gen EPYC

CWE ID-CWE-20

Improper Input Validation

CVE-2023-20530

Matching Score-6

Matching Score-6

CVSS Score-7.5||HIGH

EPSS-0.39% / 60.38%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:57

Updated-07 Apr, 2025 | 19:15

Insufficient input validation of BIOS mailbox messages in SMU may result in out-of-bounds memory reads potentially resulting in a denial of service.

CWE ID-CWE-20

Improper Input Validation

CVE-2023-20532

Matching Score-6

Matching Score-6

CVSS Score-5.3||MEDIUM

EPSS-0.38% / 59.70%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:57

Updated-07 Apr, 2025 | 19:15

Insufficient input validation in the SMU may allow an attacker to improperly lock resources, potentially resulting in a denial of service.

Product-epyc_7702_firmware epyc_7343_firmware epyc_7453 epyc_7702p_firmware epyc_7413_firmware epyc_7f52 epyc_7302 epyc_7232p_firmware epyc_7302_firmware epyc_7443 epyc_7542 epyc_7763_firmware epyc_7513 epyc_7373x_firmware epyc_7352 epyc_7573x_firmware epyc_7f32 epyc_7302p_firmware epyc_7742 epyc_7252 epyc_7542_firmware epyc_7262 epyc_7773x_firmware epyc_72f3_firmware epyc_7443p_firmware epyc_7402 epyc_7702p epyc_7443p epyc_7h12_firmware epyc_75f3 epyc_7443_firmware epyc_7642_firmware epyc_7f32_firmware epyc_7552_firmware epyc_7313p epyc_7402p epyc_7543p epyc_7f72_firmware epyc_7642 epyc_7532 epyc_7502p_firmware epyc_7573x epyc_7272_firmware epyc_7663_firmware epyc_7763 epyc_7413 epyc_7643 epyc_7502 epyc_7h12 epyc_7f72 epyc_7743_firmware epyc_7643_firmware epyc_72f3 epyc_7262_firmware epyc_7352_firmware epyc_74f3_firmware epyc_7532_firmware epyc_7502_firmware epyc_7543_firmware epyc_7402p_firmware epyc_7373x epyc_7232p epyc_7282_firmware epyc_7743 epyc_7452 epyc_7452_firmware epyc_7302p epyc_73f3_firmware epyc_7702 epyc_7543p_firmware epyc_7663 epyc_7773x epyc_7543 epyc_7f52_firmware epyc_7313p_firmware epyc_7662_firmware epyc_7252_firmware epyc_7002_firmware epyc_7313 epyc_7003 epyc_7003_firmware epyc_7002 epyc_7313_firmware epyc_7402_firmware epyc_74f3 epyc_75f3_firmware epyc_7343 epyc_7272 epyc_7662 epyc_7713p_firmware epyc_7713p epyc_73f3 epyc_7713_firmware epyc_7453_firmware epyc_7552 epyc_7502p epyc_7713 epyc_7742_firmware epyc_7282 epyc_7513_firmware 3rd Gen EPYC 2nd Gen EPYC

CWE ID-CWE-20

Improper Input Validation

CVE-2024-21944

Matching Score-6

Matching Score-6

CVSS Score-5.3||MEDIUM

EPSS-Not Assigned

Published-10 Jun, 2026 | 21:54

Updated-10 Jun, 2026 | 23:16

Improper input validation for DIMM serial presence detect (SPD) metadata could allow an attacker with physical access, ring0 access on a system with a non-compliant DIMM, or control over the Root of Trust for BIOS update, to potentially overwrite guest memory resulting in loss of guest data integrity.

Product-AMD EPYC™ 9004 Series Processor AMD EPYC™ 7003 Series Processors

CWE ID-CWE-20

Improper Input Validation

CVE-2023-20528

Matching Score-6

Matching Score-6

CVSS Score-2.4||LOW

EPSS-0.07% / 22.66%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:57

Updated-07 Apr, 2025 | 19:15

Insufficient input validation in the SMU may allow a physical attacker to exfiltrate SMU memory contents over the I2C bus potentially leading to a loss of confidentiality.

CWE ID-CWE-20

Improper Input Validation

CVE-2023-20525

Matching Score-6

Matching Score-6

CVSS Score-6.5||MEDIUM

EPSS-0.30% / 54.00%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:57

Updated-07 Apr, 2025 | 16:15

Insufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to read memory outside the bounds of a mapped register potentially leading to a denial of service.

CWE ID-CWE-20

Improper Input Validation

CVE-2025-0037

Matching Score-6

Matching Score-6

CVSS Score-6.6||MEDIUM

EPSS-0.07% / 21.59%

7 Day CHG~0.00%

Published-09 Jun, 2025 | 23:52

Updated-12 Jun, 2025 | 16:06

In AMD Versal Adaptive SoC devices, the lack of address validation when executing PLM runtime services through the PLM firmware can allow access to isolated or protected memory spaces, resulting in the loss of integrity and confidentiality.

Product-Platform Loader and Manager (PLM)

CWE ID-CWE-20

Improper Input Validation

CVE-2021-26404

Matching Score-6

Matching Score-6

CVSS Score-5.5||MEDIUM

EPSS-0.06% / 20.04%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:56

Updated-08 Apr, 2025 | 20:22

Improper input validation and bounds checking in SEV firmware may leak scratch buffer bytes leading to potential information disclosure.

CWE ID-CWE-20

Improper Input Validation

CVE-2021-26373

Matching Score-6

Matching Score-6

CVSS Score-5.5||MEDIUM

EPSS-0.04% / 12.24%

7 Day CHG~0.00%

Published-11 May, 2022 | 16:27

Updated-16 Sep, 2024 | 16:32

Insufficient bound checks in the System Management Unit (SMU) may result in a system voltage malfunction that could result in denial of resources and/or possibly denial of service.

CWE ID-CWE-20

Improper Input Validation

CVE-2021-26351

Matching Score-6

Matching Score-6

CVSS Score-5.5||MEDIUM

EPSS-0.13% / 31.41%

7 Day CHG~0.00%

Published-12 May, 2022 | 17:18

Updated-16 Sep, 2024 | 22:41

Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA (Direct Memory Access) read/write from/to invalid DRAM address that could result in denial of service.

CWE ID-CWE-20

Improper Input Validation

CVE-2021-26325

Matching Score-6

Matching Score-6

CVSS Score-5.5||MEDIUM

EPSS-0.12% / 30.91%

7 Day CHG~0.00%

Published-16 Nov, 2021 | 18:23

Updated-16 Sep, 2024 | 16:28

Insufficient input validation in the SNP_GUEST_REQUEST command may lead to a potential data abort error and a denial of service.

CWE ID-CWE-20

Improper Input Validation

CVE-2021-26327

Matching Score-6

Matching Score-6

CVSS Score-5.5||MEDIUM

EPSS-0.13% / 31.88%

7 Day CHG~0.00%

Published-16 Nov, 2021 | 18:18

Updated-17 Sep, 2024 | 02:42

Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of guest confidentiality.

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-668

Exposure of Resource to Wrong Sphere

CVE-2021-26321

Matching Score-6

Matching Score-6

CVSS Score-5.5||MEDIUM

EPSS-0.12% / 30.05%

7 Day CHG~0.00%

Published-16 Nov, 2021 | 18:07

Updated-16 Sep, 2024 | 18:56

Insufficient ID command validation in the SEV Firmware may allow a local authenticated attacker to perform a denial of service of the PSP.

Product-epyc_7543 epyc_7502_firmware epyc_7402 epyc_7262_firmware epyc_7371_firmware epyc_7443_firmware epyc_7402p epyc_7451 epyc_7261 epyc_7282_firmware epyc_7343 epyc_7252_firmware epyc_7543_firmware epyc_7f32 epyc_7542_firmware epyc_7551_firmware epyc_7763_firmware epyc_7272_firmware epyc_7713p epyc_7443 epyc_7513 epyc_7313p_firmware epyc_7252 epyc_7502p epyc_7232p_firmware epyc_7702 epyc_7351p_firmware epyc_7302p_firmware epyc_7453 epyc_7642_firmware epyc_7h12 epyc_7452 epyc_7513_firmware epyc_7543p_firmware epyc_7542 epyc_7281_firmware epyc_7413_firmware epyc_7h12_firmware epyc_7601 epyc_7302 epyc_7232p epyc_7643_firmware epyc_7f52 epyc_7663 epyc_7552_firmware epyc_75f3 epyc_7371 epyc_72f3_firmware epyc_7f72 epyc_7f32_firmware epyc_7662 epyc_7f72_firmware epyc_7662_firmware epyc_7502 epyc_75f3_firmware epyc_7642 epyc_7451_firmware epyc_7343_firmware epyc_7532_firmware epyc_7551 epyc_7281 epyc_7502p_firmware epyc_7413 epyc_7301 epyc_7551p epyc_7313p epyc_7313 epyc_7351p epyc_7551p_firmware epyc_7663_firmware epyc_7601_firmware epyc_7351_firmware epyc_7251 epyc_7532 epyc_7552 epyc_7302p epyc_7702p_firmware epyc_74f3_firmware epyc_7352 epyc_7302_firmware epyc_7763 epyc_7401 epyc_7713_firmware epyc_7402_firmware epyc_7742 epyc_7713p_firmware epyc_7272 epyc_73f3_firmware epyc_7702p epyc_7f52_firmware epyc_7262 epyc_7713 epyc_7443p_firmware epyc_7251_firmware epyc_7401_firmware epyc_72f3 epyc_7643 epyc_7452_firmware epyc_7402p_firmware epyc_7351 epyc_7261_firmware epyc_7543p epyc_7313_firmware epyc_7443p epyc_7742_firmware epyc_7453_firmware epyc_7282 epyc_7501 epyc_7501_firmware epyc_7702_firmware epyc_7352_firmware epyc_74f3 epyc_7301_firmware epyc_73f3 2nd Gen AMD EPYC™3rd Gen AMD EPYC™1st Gen AMD EPYC™

CWE ID-CWE-20

Improper Input Validation

CWE ID-CWE-77

Improper Neutralization of Special Elements used in a Command ('Command Injection')

CVE-2021-26370

Matching Score-6

Matching Score-6

CVSS Score-7.1||HIGH

EPSS-0.13% / 31.41%

7 Day CHG~0.00%

Published-10 May, 2022 | 18:25

Updated-16 Sep, 2024 | 22:20

Improper validation of destination address in SVC_LOAD_FW_IMAGE_BY_INSTANCE and SVC_LOAD_BINARY_BY_ATTRIB in a malicious UApp or ABL may allow an attacker to overwrite arbitrary bootloader memory with SPI ROM contents resulting in a loss of integrity and availability.

Product-epyc_7543 epyc_7502_firmware epyc_7402 epyc_7262_firmware epyc_7443_firmware epyc_7402p epyc_7343 epyc_7252_firmware epyc_7543_firmware epyc_7282_firmware epyc_7542_firmware epyc_7f32 epyc_7763_firmware epyc_7272_firmware epyc_7713p epyc_7573x epyc_7443 epyc_7513 epyc_7313p_firmware epyc_7252 epyc_7502p epyc_7232p_firmware epyc_7702 epyc_7302p_firmware epyc_7453 epyc_7642_firmware epyc_7452 epyc_7373x epyc_7h12 epyc_7513_firmware epyc_7543p_firmware epyc_7542 epyc_7302 epyc_7413_firmware epyc_7h12_firmware epyc_7232p epyc_7002 epyc_7643_firmware epyc_7f52 epyc_7663 epyc_7773x_firmware epyc_75f3 epyc_7552_firmware epyc_7373x_firmware epyc_72f3_firmware epyc_7f72 epyc_7f32_firmware epyc_7662 epyc_7502 epyc_75f3_firmware epyc_7662_firmware epyc_7f72_firmware epyc_7642 epyc_7473x epyc_7473x_firmware epyc_7343_firmware epyc_7532_firmware epyc_7502p_firmware epyc_7413 epyc_7313p epyc_7002_firmware epyc_7313 epyc_7663_firmware epyc_7573x_firmware epyc_7552 epyc_7302p epyc_7702p_firmware epyc_74f3_firmware epyc_7352 epyc_7763 epyc_7302_firmware epyc_7713_firmware epyc_7402_firmware epyc_7742 epyc_7713p_firmware epyc_7272 epyc_73f3_firmware epyc_7702p epyc_7f52_firmware epyc_7262 epyc_7713 epyc_7443p_firmware epyc_7773x epyc_72f3 epyc_7643 epyc_7402p_firmware epyc_7452_firmware epyc_7543p epyc_7313_firmware epyc_7443p epyc_7742_firmware epyc_7453_firmware epyc_7282 epyc_7702_firmware epyc_74f3 epyc_7352_firmware epyc_7532 epyc_73f3 2nd Gen AMD EPYC™3rd Gen AMD EPYC™

CWE ID-CWE-20

Improper Input Validation

CVE-2017-7262

Matching Score-6

Assigner-MITRE Corporation

Matching Score-6

Assigner-MITRE Corporation

CVSS Score-5.5||MEDIUM

EPSS-0.06% / 18.37%

7 Day CHG~0.00%

Published-25 Mar, 2017 | 00:00

Updated-13 May, 2026 | 00:24

The AMD Ryzen processor with AGESA microcode through 2017-01-27 allows local users to cause a denial of service (system hang) via an application that makes a long series of FMA3 instructions, as demonstrated by the Flops test suite.

Vendor-n/a Advanced Micro Devices, Inc.

Product-ryzen n/a

CWE ID-CWE-20

Improper Input Validation

CVE-2022-27674

Matching Score-6

Matching Score-6

Vendor-FreeBSD Foundation Linux Kernel Organization, Inc Microsoft Corporation Advanced Micro Devices, Inc.

CVSS Score-7.5||HIGH

EPSS-0.39% / 60.38%

7 Day CHG~0.00%

Published-09 Nov, 2022 | 20:45

Updated-01 May, 2025 | 15:15

Insufficient validation in the IOCTL input/output buffer in AMD μProf may allow an attacker to bypass bounds checks potentially leading to a Windows kernel crash resulting in denial of service.

Product-amd_uprof windows freebsd linux_kernel AMD μProf

CWE ID-CWE-20

Improper Input Validation

CVE-2022-23818

Matching Score-6

Matching Score-6

CVSS Score-7.5||HIGH

EPSS-0.38% / 60.03%

7 Day CHG~0.00%

Published-09 May, 2023 | 18:36

Updated-28 Jan, 2025 | 16:15

Insufficient input validation on the model specific register: VM_HSAVE_PA may potentially lead to loss of SEV-SNP guest memory integrity.

CWE ID-CWE-20

Improper Input Validation

CVE-2022-23814

Matching Score-6

Matching Score-6

CVSS Score-5.3||MEDIUM

EPSS-0.25% / 48.39%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:56

Updated-09 Apr, 2025 | 14:42

Failure to validate addresses provided by software to BIOS commands may result in a potential loss of integrity of guest memory in a confidential compute environment.

Product-milanpi-sp3_firmware milanpi-sp3 3rd Gen EPYC

CWE ID-CWE-20

Improper Input Validation

CVE-2022-23817

Matching Score-6

Matching Score-6

CVSS Score-7.3||HIGH

EPSS-0.17% / 37.99%

7 Day CHG-0.01%

Published-13 Aug, 2024 | 16:51

Updated-15 May, 2026 | 05:16

Insufficient checking of memory buffer in AMD Secure Processor (ASP) Secure OS may allow an attacker with a malicious trusted application to read/write to the ASP Secure OS kernel virtual address space, potentially resulting in privilege escalation.

Product-AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics AMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors AMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors MI-25 / 50 AMD Ryzen™ Embedded V2000 Series Processor AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics AMD Radeon™ RX 6000 Series Graphics Products AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics AMD Ryzen™ Embedded V3000 Series Processors AMD Ryzen™ 3000 Series Desktop Processors AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge")AMD Ryzen™ 5000 Series Desktop Processors AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics AMD Radeon™ PRO W6000 Series Graphics Products AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics AMD Ryzen™ Embedded R2000 Series Processors AMD Instinct™ MI210 AMD Ryzen™ 4000 Series Desktop Processors AMD Ryzen™ Embedded 5000 Series Processors AMD Ryzen™ Embedded R1000 Series Processors AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso")MI-100 AMD Ryzen™ 2000 Mobile Processors AMD Instinct™ MI250 AMD Radeon™ PRO W5000 Series Graphics Products AMD Radeon™ RX 5000 Series Graphics Products ryzen_3_3300x_firmware ryzen_3_pro_3200g_firmware ryzen_threadripper_pro_5995wx_firmware ryzen_3_4300u_firmware ryzen_threadripper_pro_3995wx_firmware ryzen_5_6600u_firmware ryzen_5_5600x_firmware ryzen_3_5425c_firmware ryzen_5_7500f_firmware ryzen_3_5300g_firmware ryzen_3_7335u_firmware ryzen_3_3300u_firmware ryzen_7_7745hx_firmware athlon_pro_300ge_firmware

CWE ID-CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

CWE ID-CWE-20

Improper Input Validation

CVE-2021-46754

Matching Score-6

Matching Score-6

CVSS Score-9.1||CRITICAL

EPSS-0.32% / 55.52%

7 Day CHG~0.00%

Published-09 May, 2023 | 19:00

Updated-04 Aug, 2024 | 05:17

Insufficient input validation in the ASP (AMD Secure Processor) bootloader may allow an attacker with a compromised Uapp or ABL to coerce the bootloader into exposing sensitive information to the SMU (System Management Unit) resulting in a potential loss of confidentiality and integrity.

Product-ryzen_3500_firmware ryzen_3800xt ryzen_3900x_firmware ryzen_3900x ryzen_5600x_firmware ryzen_5800x_firmware ryzen_3600 ryzen_3600_firmware ryzen_2700x ryzen_2600_firmware ryzen_3500 ryzen_2200g_firmware ryzen_1600_\(af\)_firmware ryzen_5600g ryzen_pro_2100ge ryzen_3950x_firmware ryzen_5600ge ryzen_3950x ryzen_3900xt_firmware ryzen_5600 ryzen_5600ge_firmware ryzen_3800x_firmware ryzen_2200ge ryzen_1200_\(af\)_firmware ryzen_2700e_firmware ryzen_2400g ryzen_5600g_firmware ryzen_2920x ryzen_5600_firmware ryzen_1200_\(af\)ryzen_5700x_firmware ryzen_5965wx_firmware ryzen_2600e ryzen_3500x_firmware ryzen_2990wx ryzen_5900x ryzen_2920x_firmware ryzen_2600x ryzen_5300ge_firmware ryzen_5900 ryzen_2700_firmware ryzen_5500_firmware ryzen_5700g athlon_silver_3050ge ryzen_5800x ryzen_3900xt ryzen_5700ge_firmware ryzen_2970wx_firmware ryzen_5965wx ryzen_3600xt ryzen_2200ge_firmware ryzen_5300g_firmware ryzen_3900_firmware ryzen_2700e athlon_gold_3150g ryzen_5800_firmware ryzen_5945wx_firmware ryzen_2600e_firmware athlon_silver_3050ge_firmware ryzen_5800 ryzen_5995wx_firmware ryzen_2950x ryzen_2500x ryzen_2400ge ryzen_3300x ryzen_3500x ryzen_3900 ryzen_2990wx_firmware ryzen_5950x_firmware ryzen_2400ge_firmware ryzen_5955wx_firmware ryzen_2600x_firmware ryzen_3100 ryzen_2400g_firmware ryzen_2500x_firmware ryzen_5600x ryzen_5300ge ryzen_5975wx_firmware ryzen_2700x_firmware ryzen_pro_2100ge_firmware ryzen_5950x ryzen_2300x_firmware ryzen_3800xt_firmware ryzen_2700 athlon_gold_3150ge ryzen_3100_firmware ryzen_3600x_firmware ryzen_5995wx ryzen_5500 ryzen_5900_firmware ryzen_3300x_firmware ryzen_5700g_firmware ryzen_5800x3d ryzen_5700x ryzen_5900x_firmware ryzen_5300g ryzen_5700ge ryzen_5800x3d_firmware ryzen_3600x ryzen_2970wx ryzen_3800x ryzen_2950x_firmware ryzen_2600 ryzen_2200g ryzen_2300x ryzen_1600_\(af\)athlon_gold_3150ge_firmware ryzen_5955wx athlon_gold_3150g_firmware ryzen_5945wx ryzen_5975wx ryzen_3600xt_firmware AMD Ryzen™ Embedded V2000 Ryzen™ 2000 Series Mobile Processors “Raven Ridge” FP5 Ryzen™ 2000 series Desktop Processors “Raven Ridge” AM4 Ryzen™ 5000 Series Desktop processor with Radeon™ Graphics “Cezanne” AM4 Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics “Renoir” AMD Ryzen™ Embedded V1000 Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Pollock”Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”AMD Ryzen™ Embedded R2000 Ryzen™ 5000 Series Mobile processors with Radeon™ Graphics “Cezanne”Ryzen™ 3000 Series Mobile processor, 2nd Gen AMD Ryzen™ Mobile Processors with Radeon™ Graphics “Picasso”Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Dali”/”Dali” ULP AMD Ryzen™ Embedded R1000

CWE ID-CWE-20

Improper Input Validation

CVE-2021-46756

Matching Score-6

Matching Score-6

CVSS Score-9.1||CRITICAL

EPSS-0.47% / 65.00%

7 Day CHG~0.00%

Published-09 May, 2023 | 19:00

Updated-28 Jan, 2025 | 16:15

Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the bootloader resulting in a potential denial of service and loss of integrity.

Product-epyc_72f3_firmware epyc_7443p epyc_7301_firmware epyc_7451_firmware epyc_7552_firmware epyc_7451 epyc_7282_firmware epyc_7742_firmware epyc_7371 epyc_7773x epyc_7f72_firmware epyc_7413 epyc_7532 epyc_7313p_firmware epyc_7702p_firmware epyc_7663 epyc_7551 epyc_7h12 epyc_7301 epyc_7453 epyc_73f3_firmware epyc_7401 epyc_7f52 epyc_7543_firmware epyc_7f32 epyc_7402p epyc_7552 epyc_7261_firmware epyc_73f3 epyc_74f3_firmware epyc_7252 epyc_7571_firmware epyc_7402_firmware epyc_7351_firmware epyc_7642_firmware epyc_75f3_firmware epyc_7262_firmware epyc_7343 epyc_7351 epyc_7542 epyc_7642 epyc_7443_firmware epyc_7272_firmware epyc_7501 epyc_7302 epyc_7f32_firmware epyc_7763_firmware epyc_7573x_firmware epyc_7401p_firmware epyc_7252_firmware epyc_7473x_firmware epyc_7352 epyc_7643_firmware epyc_7401_firmware epyc_7662 epyc_7473x epyc_7232p epyc_7532_firmware epyc_7453_firmware epyc_7351p_firmware epyc_7551p epyc_7501_firmware epyc_7713p_firmware epyc_7302_firmware epyc_7702_firmware epyc_7742 epyc_72f3 epyc_7f52_firmware epyc_7543p epyc_7502 epyc_7452 epyc_7601_firmware epyc_7513 epyc_7302p epyc_7763 epyc_7413_firmware epyc_74f3 epyc_7502_firmware epyc_7402p_firmware epyc_7713p epyc_7251 epyc_7402 epyc_7643 epyc_7551_firmware epyc_7313 epyc_7232p_firmware epyc_7443 epyc_7302p_firmware epyc_7261 epyc_7551p_firmware epyc_7663_firmware epyc_7352_firmware epyc_7543 epyc_7281 epyc_7502p_firmware epyc_7713_firmware epyc_7371_firmware epyc_7713 epyc_7281_firmware epyc_7571 epyc_7702 epyc_7702p epyc_75f3 epyc_7313p epyc_7251_firmware epyc_7351p epyc_7773x_firmware epyc_7313_firmware epyc_7573x epyc_7502p epyc_7h12_firmware epyc_7452_firmware epyc_7401p epyc_7543p_firmware epyc_7282 epyc_7272 epyc_7513_firmware epyc_7373x epyc_7662_firmware epyc_7542_firmware epyc_7f72 epyc_7343_firmware epyc_7443p_firmware epyc_7373x_firmware epyc_7601 epyc_7262 1st Gen AMD EPYC™ Processors 2nd Gen AMD EPYC™ Processors Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Dali”/”Dali” ULP 3rd Gen AMD Ryzen™ Threadripper™ Processors “Castle Peak” HEDT Ryzen™ 3000 Series Mobile processor, 2nd Gen AMD Ryzen™ Mobile Processors with Radeon™ Graphics “Picasso”Ryzen™ 3000 Series Desktop Processors “Matisse” AM4 Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Pollock”Ryzen™ 2000 Series Desktop Processors “Pinnacle Ridge”Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS Ryzen™ 2000 Series Mobile Processors “Raven Ridge” FP5 Ryzen™ 5000 Series Desktop processor with Radeon™ Graphics “Cezanne” AM4 2nd Gen AMD Ryzen™ Threadripper™ Processors “Colfax”3rd Gen AMD EPYC™ Processors Ryzen™ 2000 series Desktop Processors “Raven Ridge” AM4 Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics “Renoir” AMD Ryzen™ 5000 Series Desktop Processors “Vermeer” AM4 Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”Ryzen™ 5000 Series Mobile processors with Radeon™ Graphics “Cezanne”

CWE ID-CWE-20

Improper Input Validation

CVE-2021-46762

Matching Score-6

Matching Score-6

CVSS Score-3.9||LOW

EPSS-0.05% / 16.38%

7 Day CHG~0.00%

Published-09 May, 2023 | 18:36

Updated-28 Jan, 2025 | 16:00

Insufficient input validation in the SMU may allow an attacker to corrupt SMU SRAM potentially leading to a loss of integrity or denial of service.

Product-epyc_7543 epyc_7502_firmware epyc_7402 epyc_7262_firmware epyc_7443_firmware epyc_7402p epyc_7343 epyc_7252_firmware epyc_7543_firmware epyc_7282_firmware epyc_7542_firmware epyc_7f32 epyc_7763_firmware epyc_7272_firmware epyc_7573x epyc_7713p epyc_7443 epyc_7513 epyc_7313p_firmware epyc_7252 epyc_7502p epyc_7232p_firmware epyc_7702 epyc_7302p_firmware epyc_7453 epyc_7642_firmware epyc_7452 epyc_7373x epyc_7h12 epyc_7513_firmware epyc_7543p_firmware epyc_7542 epyc_7302 epyc_7413_firmware epyc_7h12_firmware epyc_7232p epyc_7643_firmware epyc_7f52 epyc_7663 epyc_7773x_firmware epyc_75f3 epyc_7552_firmware epyc_7373x_firmware epyc_72f3_firmware epyc_7f72 epyc_7f32_firmware epyc_7662 epyc_7502 epyc_75f3_firmware epyc_7662_firmware epyc_7f72_firmware epyc_7642 epyc_7473x epyc_7473x_firmware epyc_7343_firmware epyc_7532_firmware epyc_7502p_firmware epyc_7413 epyc_7313p epyc_7313 epyc_7663_firmware epyc_7573x_firmware epyc_7552 epyc_7302p epyc_7702p_firmware epyc_74f3_firmware epyc_7352 epyc_7763 epyc_7302_firmware epyc_7713_firmware epyc_7402_firmware epyc_7742 epyc_7713p_firmware epyc_7272 epyc_73f3_firmware epyc_7702p epyc_7f52_firmware epyc_7262 epyc_7713 epyc_7443p_firmware epyc_7773x epyc_72f3 epyc_7643 epyc_7402p_firmware epyc_7452_firmware epyc_7313_firmware epyc_7543p epyc_7443p epyc_7742_firmware epyc_7453_firmware epyc_7282 epyc_7702_firmware epyc_74f3 epyc_7352_firmware epyc_7532 epyc_73f3 AMD EPYC™ Embedded 7002 AMD EPYC™ Embedded 7003 3rd Gen AMD EPYC™2nd Gen AMD EPYC™

CWE ID-CWE-20

Improper Input Validation

CVE-2021-46773

Matching Score-6

Matching Score-6

CVSS Score-8.8||HIGH

EPSS-0.50% / 66.37%

7 Day CHG~0.00%

Published-09 May, 2023 | 19:01

Updated-28 Jan, 2025 | 16:15

Insufficient input validation in ABL may enable a privileged attacker to corrupt ASP memory, potentially resulting in a loss of integrity or code execution.

Product-ryzen_2600x ryzen_3600x_firmware ryzen_3800x ryzen_1200_\(af\)_firmware ryzen_3300x ryzen_5300ge ryzen_3600 ryzen_5995wx ryzen_2920x_firmware ryzen_5600 ryzen_5955wx ryzen_5800x_firmware ryzen_2700e ryzen_2600_firmware ryzen_6980hx_firmware ryzen_5500_firmware ryzen_5900 ryzen_3600x ryzen_2920x ryzen_pro_2100ge_firmware ryzen_2970wx_firmware ryzen_3800x_firmware ryzen_3600xt_firmware ryzen_5700x ryzen_5600x ryzen_6800u_firmware ryzen_2300x_firmware ryzen_6900hx_firmware ryzen_5300g_firmware ryzen_5700ge ryzen_2600e_firmware ryzen_2950x ryzen_3900xt_firmware ryzen_2600 ryzen_6980hs ryzen_3600_firmware ryzen_2500x ryzen_5600x_firmware ryzen_3900xt ryzen_5945wx_firmware ryzen_2990wx_firmware ryzen_5800_firmware ryzen_2990wx ryzen_3100_firmware ryzen_3500_firmware ryzen_2500x_firmware ryzen_5300g ryzen_2200ge ryzen_2200ge_firmware ryzen_3900 ryzen_5975wx ryzen_2200g ryzen_6600u_firmware ryzen_6800u ryzen_2950x_firmware ryzen_2600e ryzen_2700_firmware ryzen_5800 ryzen_3800xt_firmware ryzen_5800x ryzen_5800x3d_firmware ryzen_6600hs_firmware ryzen_3300x_firmware ryzen_2970wx ryzen_6600u ryzen_3800xt ryzen_5500 ryzen_2700x_firmware ryzen_3900x ryzen_2600x_firmware ryzen_5955wx_firmware ryzen_3500 ryzen_5300ge_firmware ryzen_2400ge_firmware ryzen_3950x ryzen_5995wx_firmware ryzen_5950x_firmware ryzen_1200_\(af\)ryzen_5700g_firmware ryzen_5900_firmware ryzen_3600xt ryzen_5600ge_firmware ryzen_5600g ryzen_5950x ryzen_2400g ryzen_6600hs ryzen_pro_2100ge ryzen_5600_firmware ryzen_2700x ryzen_5965wx_firmware ryzen_6900hs ryzen_5600g_firmware ryzen_2400ge ryzen_5945wx ryzen_5965wx ryzen_5700g ryzen_6800hs ryzen_6800h ryzen_6900hs_firmware ryzen_5600ge ryzen_3900_firmware ryzen_2700 ryzen_2200g_firmware ryzen_5900x ryzen_3950x_firmware ryzen_5700ge_firmware ryzen_3100 ryzen_6980hx ryzen_1600_\(af\)ryzen_2300x ryzen_1600_\(af\)_firmware ryzen_6800hs_firmware ryzen_3500x ryzen_6600h ryzen_6800h_firmware ryzen_3500x_firmware ryzen_2400g_firmware ryzen_6600h_firmware ryzen_5900x_firmware ryzen_5700x_firmware ryzen_5975wx_firmware ryzen_5800x3d ryzen_3900x_firmware ryzen_2700e_firmware ryzen_6900hx ryzen_6980hs_firmware Ryzen™ 3000 Series Desktop Processors “Matisse” AM4 Ryzen™ 2000 Series Desktop Processors “Pinnacle Ridge”Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS Ryzen™ 2000 Series Mobile Processors “Raven Ridge” FP5 Ryzen™ 5000 Series Desktop processor with Radeon™ Graphics “Cezanne” AM4 Ryzen™ 2000 series Desktop Processors “Raven Ridge” AM4 Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics “Renoir” Ryzen™ Threadripper™ PRO Processors “Chagall” WS AMD Ryzen™ 5000 Series Desktop Processors “Vermeer” AM4 Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”3rd Gen AMD Ryzen™ Threadripper™ Processors “Castle Peak” HEDT Ryzen™ 5000 Series Mobile processors with Radeon™ Graphics “Cezanne”

CWE ID-CWE-20

Improper Input Validation

CVE-2021-46767

Matching Score-6

Matching Score-6

CVSS Score-6.1||MEDIUM

EPSS-0.11% / 28.40%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:56

Updated-09 Apr, 2025 | 14:51

Insufficient input validation in the ASP may allow an attacker with physical access, unauthorized write access to memory potentially leading to a loss of integrity or denial of service.

Product-milanpi_firmware milanpi romepi romepi_firmware 3rd Gen EPYC 2nd Gen EPYC

CWE ID-CWE-20

Improper Input Validation

CVE-2021-46775

Matching Score-6

Matching Score-6

CVSS Score-6.8||MEDIUM

EPSS-0.21% / 43.65%

7 Day CHG~0.00%

Published-09 May, 2023 | 18:36

Updated-28 Jan, 2025 | 16:15

Improper input validation in ABL may enable an attacker with physical access, to perform arbitrary memory overwrites, potentially leading to a loss of integrity and code execution.

Product-epyc_72f3_firmware epyc_7443p epyc_7552_firmware epyc_7282_firmware epyc_7742_firmware epyc_7773x epyc_7f72_firmware epyc_7413 epyc_7532 epyc_7313p_firmware epyc_7702p_firmware epyc_7663 epyc_7h12 epyc_7453 epyc_73f3_firmware epyc_7f52 epyc_7543_firmware epyc_7f32 epyc_7402p epyc_7552 epyc_73f3 epyc_74f3_firmware epyc_7252 epyc_7402_firmware epyc_7642_firmware epyc_75f3_firmware epyc_7262_firmware epyc_7343 epyc_7542 epyc_7642 epyc_7443_firmware epyc_7272_firmware epyc_7302 epyc_7f32_firmware epyc_7763_firmware epyc_7573x_firmware epyc_7252_firmware epyc_7473x_firmware epyc_7352 epyc_7643_firmware epyc_7662 epyc_7473x epyc_7232p epyc_7532_firmware epyc_7453_firmware epyc_7713p_firmware epyc_7302_firmware epyc_7702_firmware epyc_7742 epyc_72f3 epyc_7f52_firmware epyc_7543p epyc_7502 epyc_7452 epyc_7513 epyc_7302p epyc_7763 epyc_7413_firmware epyc_74f3 epyc_7502_firmware epyc_7402p_firmware epyc_7713p epyc_7402 epyc_7643 epyc_7313 epyc_7232p_firmware epyc_7443 epyc_7302p_firmware epyc_7663_firmware epyc_7352_firmware epyc_7543 epyc_7502p_firmware epyc_7713_firmware epyc_7713 epyc_7702 epyc_7702p epyc_75f3 epyc_7313p epyc_7773x_firmware epyc_7313_firmware epyc_7573x epyc_7502p epyc_7h12_firmware epyc_7452_firmware epyc_7543p_firmware epyc_7282 epyc_7272 epyc_7513_firmware epyc_7373x epyc_7662_firmware epyc_7542_firmware epyc_7f72 epyc_7343_firmware epyc_7443p_firmware epyc_7373x_firmware epyc_7262 3rd Gen AMD EPYC™ 2nd Gen AMD EPYC™

CWE ID-CWE-20

Improper Input Validation

CVE-2021-46769

Matching Score-6

Matching Score-6

CVSS Score-8.8||HIGH

EPSS-0.52% / 67.12%

7 Day CHG~0.00%

Published-09 May, 2023 | 18:36

Updated-28 Jan, 2025 | 16:15

Insufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to execute arbitrary DMA copies, which can lead to code execution.

CWE ID-CWE-20

Improper Input Validation

CVE-2020-12946

Matching Score-6

Matching Score-6

CVSS Score-7.1||HIGH

EPSS-0.13% / 31.41%

7 Day CHG~0.00%

Published-16 Nov, 2021 | 18:01

Updated-17 Sep, 2024 | 00:55

Insufficient input validation in ASP firmware for discrete TPM commands could allow a potential loss of integrity and denial of service.

Product-epyc_7543 epyc_7502_firmware epyc_7402 epyc_7262_firmware epyc_7443_firmware epyc_7402p epyc_7343 epyc_7252_firmware epyc_7543_firmware epyc_7282_firmware epyc_7542_firmware epyc_7f32 epyc_7763_firmware epyc_7272_firmware epyc_7713p epyc_7443 epyc_7513 epyc_7313p_firmware epyc_7252 epyc_7502p epyc_7232p_firmware epyc_7702 epyc_7302p_firmware epyc_7453 epyc_7642_firmware epyc_7h12 epyc_7452 epyc_7513_firmware epyc_7543p_firmware epyc_7542 epyc_7302 epyc_7413_firmware epyc_7h12_firmware epyc_7232p epyc_7643_firmware epyc_7f52 epyc_7663 epyc_7552_firmware epyc_75f3 epyc_72f3_firmware epyc_7f72 epyc_7f32_firmware epyc_7662 epyc_7f72_firmware epyc_7662_firmware epyc_7502 epyc_75f3_firmware epyc_7642 epyc_7343_firmware epyc_7532_firmware epyc_7502p_firmware epyc_7413 epyc_7313p epyc_7313 epyc_7663_firmware epyc_7552 epyc_7302p epyc_7702p_firmware epyc_74f3_firmware epyc_7352 epyc_7302_firmware epyc_7763 epyc_7713_firmware epyc_7402_firmware epyc_7742 epyc_7713p_firmware epyc_7272 epyc_73f3_firmware epyc_7702p epyc_7f52_firmware epyc_7262 epyc_7713 epyc_7443p_firmware epyc_72f3 epyc_7643 epyc_7452_firmware epyc_7402p_firmware epyc_7543p epyc_7313_firmware epyc_7443p epyc_7742_firmware epyc_7453_firmware epyc_7282 epyc_7702_firmware epyc_7352_firmware epyc_74f3 epyc_7532 epyc_73f3 Athlon™ Series Ryzen™ Series

CWE ID-CWE-20

Improper Input Validation

CVE-2020-12960

Matching Score-6

Matching Score-6

CVSS Score-5.5||MEDIUM

EPSS-0.12% / 30.91%

7 Day CHG~0.00%

Published-15 Nov, 2021 | 19:47

Updated-17 Sep, 2024 | 03:53

AMD Graphics Driver for Windows 10, amdfender.sys may improperly handle input validation on InputBuffer which may result in a denial of service (DoS).

Vendor-Advanced Micro Devices, Inc.Microsoft Corporation

Product-radeon_software windows_10 AMD Radeon Software

CWE ID-CWE-20

Improper Input Validation

CVE-2023-31320

Matching Score-6

Matching Score-6

CVSS Score-7.5||HIGH

EPSS-5.18% / 90.13%

7 Day CHG~0.00%

Published-14 Nov, 2023 | 18:51

Updated-02 Aug, 2024 | 14:53

Improper input validation in the AMD RadeonTM Graphics display driver may allow an attacker to corrupt the display potentially resulting in denial of service.

Product-radeon_pro_w5500x radeon_rx_vega_64 radeon_pro_w7600 radeon_rx_6500m radeon_rx_6600 radeon_pro_vega_56_firmware ryzen_3_5300u radeon_rx_6900_xt radeon_rx_7900m ryzen_5_5600g radeon_rx_7900_xt radeon_rx_5300 ryzen_7_4700ge ryzen_7_4800h radeon_rx_vega_56 radeon_pro_w6400 radeon_rx_5500 ryzen_5_5500h radeon_rx_7900_gre radeon_pro_w5700 ryzen_9_4900h ryzen_3_5300ge ryzen_5_5600ge radeon_rx_6550m ryzen_7_4800hs radeon_rx_5300_xt ryzen_3_3015ce ryzen_5_pro_3400g radeon_rx_7800_xt radeon_rx_6700s ryzen_7_4700g ryzen_7_5700ge ryzen_3_3015e ryzen_3_4300g radeon_rx_6600_xt radeon_rx_6850m_xt radeon_rx_6650_xt radeon_pro_vega_56 ryzen_5_pro_3350ge radeon_rx_5700m radeon_pro_w6600m radeon_pro_w6600x radeon_pro_w6600 radeon_rx_5700 radeon_rx_5700_xt radeon_rx_6800_xt radeon_pro_w7500 radeon_rx_7600m radeon_rx_5500m radeon_pro_w6900x radeon_rx_5300m radeon_rx_6500_xt radeon_pro_w6800 radeon_pro_vega_64 radeon_rx_6600m radeon_rx_6550s ryzen_3_4100 ryzen_9_4900hs radeon_pro_w5700x radeon_rx_6950_xt ryzen_7_5700g ryzen_5_4600hs radeon_rx_5500_xt ryzen_5_pro_3200g radeon_pro_w7800 radeon_rx_7700s ryzen_5_pro_3200ge ryzen_5_4600g radeon_rx_6300m radeon_rx_7600 radeon_rx_6450m radeon_rx_5600m radeon_rx_6800m radeon_software ryzen_5_4600ge radeon_rx_vega_56_firmware radeon_rx_vega_64_firmware ryzen_5_4500u radeon_rx_6700 radeon_pro_w6800x_duo radeon_pro_w6300 radeon_rx_6400 ryzen_3_4300u radeon_rx_6650m radeon_rx_6650m_xt radeon_rx_6800 radeon_rx_6700_xt radeon_rx_6700m ryzen_7_4980u ryzen_5_pro_3350g ryzen_3_5300g ryzen_5_pro_3400ge radeon_pro_w5500 radeon_rx_5600 radeon_pro_w6800x radeon_rx_5600_xt ryzen_3_4300ge ryzen_5_4680u ryzen_5_5500u radeon_pro_w6500m radeon_rx_7600s radeon_rx_7600m_xt radeon_pro_vega_64_firmware ryzen_7_4700u radeon_rx_6600s radeon_rx_7700_xt ryzen_5_4600u radeon_rx_7900_xtx radeon_rx_6800s radeon_pro_w6300m ryzen_7_5700u ryzen_5_4600h ryzen_5_4500 Radeon™ PRO W5000/W6000/W7000 Series Graphics Cards Radeon™ RX Vega Series Graphics Cards Radeon™ RX 5000/6000/7000 Series Graphics Cards Radeon™ PRO WX Vega Series Graphics Cards

CWE ID-CWE-20

Improper Input Validation

CVE-2023-31339

Matching Score-6

Matching Score-6

CVSS Score-4.8||MEDIUM

EPSS-0.10% / 26.75%

7 Day CHG~0.00%

Published-13 Aug, 2024 | 16:56

Updated-05 Jun, 2026 | 20:04

Improper input validation in ARM® Trusted Firmware used in AMD’s Zynq™ UltraScale+™) MPSoC/RFSoC may allow a privileged attacker to perform out of bound reads, potentially resulting in data leakage and denial of service.

Vendor-trustedfirmware Advanced Micro Devices, Inc.

CWE ID-CWE-125

Out-of-bounds Read

CWE ID-CWE-20

Improper Input Validation

CVE-2024-21978

Matching Score-6

Matching Score-6

CVSS Score-6||MEDIUM

EPSS-1.65% / 82.41%

7 Day CHG~0.00%

Published-05 Aug, 2024 | 16:05

Updated-26 Nov, 2024 | 19:13

Improper input validation in SEV-SNP could allow a malicious hypervisor to read or overwrite guest memory potentially leading to data leakage or data corruption.

CWE ID-CWE-20

Improper Input Validation

CVE-2024-21976

Matching Score-6

Matching Score-6

CVSS Score-8.8||HIGH

EPSS-0.05% / 15.73%

7 Day CHG~0.00%

Published-12 Nov, 2024 | 17:17

Updated-15 Apr, 2026 | 00:35

Improper input validation in the NPU driver could allow an attacker to supply a specially crafted pointer potentially leading to arbitrary code execution.

Product-AMD Ryzen™ AI Software

CWE ID-CWE-20

Improper Input Validation

CVE-2024-21949

Matching Score-6

Matching Score-6

CVSS Score-5.5||MEDIUM

EPSS-0.08% / 23.87%

7 Day CHG~0.00%

Published-12 Nov, 2024 | 17:15

Updated-15 Nov, 2024 | 19:20

Improper validation of user input in the NPU driver could allow an attacker to provide a buffer with unexpected size, potentially leading to system crash.

Product-ryzen_ai_software AMD Ryzen™ AI Software ryzen_ai_software

CWE ID-CWE-20

Improper Input Validation

CVE-2025-29936

Matching Score-6

Matching Score-6

CVSS Score-8.4||HIGH

EPSS-0.03% / 9.65%

7 Day CHG~0.00%

Published-15 May, 2026 | 01:52

Updated-15 May, 2026 | 14:10

Improper input validation within the AMD Platform Management Framework (PMF) could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing privilege escalation resulting in loss of confidentiality.

Product-AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Phoenix")AMD Ryzen™ AI 300 Series Processors (formerly codenamed "Strix Point")AMD Ryzen™ Embedded 8000 Series Processors AMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics (formerly codenamed "Hawk Point")AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt R")AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics (formerly codenamed "Rembrandt")AMD Ryzen™ Al Max+

CWE ID-CWE-20

Improper Input Validation

CVE-2024-21925

Matching Score-6

Matching Score-6

CVSS Score-8.2||HIGH

EPSS-0.07% / 21.26%

7 Day CHG~0.00%

Published-11 Feb, 2025 | 20:39

Updated-15 Apr, 2026 | 00:35

Improper input validation within the AmdPspP2CmboxV2 driver may allow a privileged attacker to overwrite SMRAM, leading to arbitrary code execution.

CWE ID-CWE-20

Improper Input Validation

CVE-2022-23820

Matching Score-6

Matching Score-6

CVSS Score-7.5||HIGH

EPSS-0.15% / 35.55%

7 Day CHG~0.00%

Published-14 Nov, 2023 | 18:52

Updated-03 Aug, 2024 | 03:51

Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code execution.

CWE ID-CWE-20

Improper Input Validation

CVE-2024-0179

Matching Score-6

Matching Score-6

CVSS Score-8.2||HIGH

EPSS-0.04% / 14.27%

7 Day CHG~0.00%

Published-11 Feb, 2025 | 20:52

Updated-15 Apr, 2026 | 00:35

SMM Callout vulnerability within the AmdCpmDisplayFeatureSMM driver could allow locally authenticated attackers to overwrite SMRAM, potentially resulting in arbitrary code execution.

CWE ID-CWE-20

Improper Input Validation

CVE-2022-23831

Matching Score-6

Matching Score-6

Vendor-FreeBSD Foundation Linux Kernel Organization, Inc Microsoft Corporation Advanced Micro Devices, Inc.

CVSS Score-7.5||HIGH

EPSS-0.39% / 60.38%

7 Day CHG~0.00%

Published-09 Nov, 2022 | 20:45

Updated-01 May, 2025 | 15:15

Insufficient validation of the IOCTL input buffer in AMD μProf may allow an attacker to send an arbitrary buffer leading to a potential Windows kernel crash resulting in denial of service.

Product-amd_uprof windows freebsd linux_kernel AMD μProf

CWE ID-CWE-20

Improper Input Validation

CVE-2023-20564

Matching Score-6

Matching Score-6

CVSS Score-6.7||MEDIUM

EPSS-0.10% / 26.72%

7 Day CHG~0.00%

Published-15 Aug, 2023 | 21:07

Updated-08 Oct, 2024 | 19:31

Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution.

Vendor-Advanced Micro Devices, Inc.Microsoft Corporation

Product-ryzen_master_monitoring_sdk windows_11 ryzen_master windows_10 Ryzen™ Master ryzen

CWE ID-CWE-20

Improper Input Validation

CVE-2021-34516

Matching Score-4

Assigner-Microsoft Corporation