ByteOS

Product

Ryzen 5000 Series

Package Name

AGESA

Platforms

Default Status

affected

Versions

Affected

various

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031	N/A

Hyperlink: https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031

Resource: N/A

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031	x_transferred

Hyperlink: https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031

Resource:

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:psirt@amd.com

Published At:11 May, 2022 | 17:15

Updated At:08 Aug, 2023 | 14:21

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	4.7	MEDIUM	CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
Primary	2.0	4.7	MEDIUM	AV:L/AC:M/Au:N/C:N/I:N/A:C

Type: Primary

Version: 3.1

Base score: 4.7

Base severity: MEDIUM

Vector:

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Type: Primary

Version: 2.0

Base score: 4.7

Base severity: MEDIUM

Vector:

AV:L/AC:M/Au:N/C:N/I:N/A:C

CPE Matches

cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:*

>>epyc_7763>>-

cpe:2.3:o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:*

>>epyc_7763_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:*

>>epyc_7713p>>-

cpe:2.3:o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:*

>>epyc_7713p_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:*

>>epyc_7713>>-

cpe:2.3:o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:*

>>epyc_7713_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:*

>>epyc_7663>>-

cpe:2.3:o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:*

>>epyc_7663_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:*

>>epyc_7643>>-

cpe:2.3:o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:*

>>epyc_7643_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_75f3:-:*:*:*:*:*:*:*

>>epyc_75f3>>-

cpe:2.3:o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:*

>>epyc_75f3_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7543p:-:*:*:*:*:*:*:*

>>epyc_7543p>>-

cpe:2.3:o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:*

>>epyc_7543p_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7543:-:*:*:*:*:*:*:*

>>epyc_7543>>-

cpe:2.3:o:amd:epyc_7543_firmware:*:*:*:*:*:*:*:*

>>epyc_7543_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:*

>>epyc_7513_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7513:-:*:*:*:*:*:*:*

>>epyc_7513>>-

cpe:2.3:o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:*

>>epyc_7453_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7453:-:*:*:*:*:*:*:*

>>epyc_7453>>-

cpe:2.3:o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:*

>>epyc_74f3_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_74f3:-:*:*:*:*:*:*:*

>>epyc_74f3>>-

cpe:2.3:o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:*

>>epyc_7443p_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7443p:-:*:*:*:*:*:*:*

>>epyc_7443p>>-

cpe:2.3:o:amd:epyc_7443_firmware:*:*:*:*:*:*:*:*

>>epyc_7443_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7443:-:*:*:*:*:*:*:*

>>epyc_7443>>-

cpe:2.3:o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:*

>>epyc_7413_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7413:-:*:*:*:*:*:*:*

>>epyc_7413>>-

cpe:2.3:o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:*

>>epyc_73f3_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_73f3:-:*:*:*:*:*:*:*

>>epyc_73f3>>-

cpe:2.3:o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:*

>>epyc_7343_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7343:-:*:*:*:*:*:*:*

>>epyc_7343>>-

cpe:2.3:o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:*

>>epyc_7313p_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7313p:-:*:*:*:*:*:*:*

>>epyc_7313p>>-

cpe:2.3:o:amd:epyc_7313_firmware:*:*:*:*:*:*:*:*

>>epyc_7313_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7313:-:*:*:*:*:*:*:*

>>epyc_7313>>-

cpe:2.3:o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:*

>>epyc_72f3_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_72f3:-:*:*:*:*:*:*:*

>>epyc_72f3>>-

cpe:2.3:o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:*

>>epyc_7773x_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7773x:-:*:*:*:*:*:*:*

>>epyc_7773x>>-

cpe:2.3:o:amd:epyc_7473x_firmware:*:*:*:*:*:*:*:*

>>epyc_7473x_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7473x:-:*:*:*:*:*:*:*

>>epyc_7473x>>-

cpe:2.3:o:amd:epyc_7573x_firmware:*:*:*:*:*:*:*:*

>>epyc_7573x_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7573x:-:*:*:*:*:*:*:*

>>epyc_7573x>>-

cpe:2.3:o:amd:epyc_7373x_firmware:*:*:*:*:*:*:*:*

>>epyc_7373x_firmware>>Versions before milanpi-sp3_1.0.0.7(exclusive)

cpe:2.3:h:amd:epyc_7373x:-:*:*:*:*:*:*:*

>>epyc_7373x>>-

cpe:2.3:o:amd:epyc_7002_firmware:*:*:*:*:*:*:*:*

>>epyc_7002_firmware>>Versions before romepi-sp3_1.0.0.d(exclusive)

cpe:2.3:h:amd:epyc_7002:-:*:*:*:*:*:*:*

>>epyc_7002>>-

cpe:2.3:o:amd:epyc_7232p_firmware:*:*:*:*:*:*:*:*

>>epyc_7232p_firmware>>Versions before romepi-sp3_1.0.0.d(exclusive)

cpe:2.3:h:amd:epyc_7232p:-:*:*:*:*:*:*:*

>>epyc_7232p>>-

Weaknesses

CWE ID	Type	Source
CWE-1284	Primary	nvd@nist.gov

CWE ID: CWE-1284

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031	psirt@amd.com	N/A

Hyperlink: https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031

Source: psirt@amd.com

Resource: N/A

Similar CVEs

4Records found

CVE-2007-4574

Matching Score-8

Assigner-Red Hat, Inc.

Matching Score-8

Assigner-Red Hat, Inc.

CVSS Score-4.7||MEDIUM

EPSS-0.04% / 13.08%

7 Day CHG~0.00%

Published-23 Oct, 2007 | 10:00

Updated-07 Aug, 2024 | 15:01

Unspecified vulnerability in the "stack unwinder fixes" in kernel in Red Hat Enterprise Linux 5, when running on AMD64 and Intel 64, allows local users to cause a denial of service via unknown vectors.

Vendor-n/a Red Hat, Inc.Intel Corporation Advanced Micro Devices, Inc.

Product-enterprise_linux amd64 ia64 n/a

CVE-2013-6885

Matching Score-8

Assigner-Red Hat, Inc.

Matching Score-8

Assigner-Red Hat, Inc.

CVSS Score-4.7||MEDIUM

EPSS-1.29% / 78.79%

7 Day CHG~0.00%

Published-29 Nov, 2013 | 02:00

Updated-11 Apr, 2025 | 00:51

The microcode on AMD 16h 00h through 0Fh processors does not properly handle the interaction between locked instructions and write-combined memory types, which allows local users to cause a denial of service (system hang) via a crafted application, aka the errata 793 issue.

Vendor-n/a Advanced Micro Devices, Inc.

Product-16h_model_processor_firmware 16h_model_0fh_processor 16h_model_00h_processor n/a

CVE-2021-46795

Matching Score-8

Matching Score-8

Product-cezannepi-fp6 renoirpi-fp6_firmware cezannepi-fp6_firmware comboam4v2_pi_firmware comboam4v2_pi Ryzen 5000 Series Ryzen 3000 Series

CVSS Score-4.7||MEDIUM

EPSS-0.04% / 10.78%

7 Day CHG~0.00%

Published-10 Jan, 2023 | 20:53

Updated-09 Apr, 2025 | 15:13

A TOCTOU (time-of-check to time-of-use) vulnerability exists where an attacker may use a compromised BIOS to cause the TEE OS to read memory out of bounds that could potentially result in a denial of service.

Vendor-AMD Advanced Micro Devices, Inc.

CWE ID-CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

CVE-2021-26350

Matching Score-8

Matching Score-8