ByteOS

CVSS Score-8.7||HIGH

EPSS-Not Assigned

Published-12 Feb, 2026 | 17:11

Updated-12 Feb, 2026 | 18:55

Improper Access Control in an on-chip debug interface could allow a privileged attacker to enable a debug interface and potentially compromise data confidentiality or integrity.

CWE ID-CWE-1191

On-Chip Debug and Test Interface With Improper Access Control

CVE-2021-26410

CVSS Score-1.8||LOW

EPSS-0.01% / 0.21%

7 Day CHG~0.00%

Published-10 Feb, 2026 | 19:48

Updated-12 Feb, 2026 | 14:12

Improper syscall input validation in ASP (AMD Secure Processor) may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential information disclosure.

Product-AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics AMD Ryzen™ Embedded V2000 Series Processors AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics AMD Ryzen™ 4000 Series Desktop Processors AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics AMD Radeon™ RX 5000 Series Graphics Products AMD Ryzen™ Embedded R1000 Series Processors AMD Radeon™ RX 6000 Series Graphics Products AMD Radeon™ PRO W6000 Series Graphics Products AMD Radeon™ PRO V620 AMD Radeon™ PRO W5000 Series Graphics Products AMD Radeon™ PRO V520 AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso")AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics AMD Ryzen™ Embedded V3000 Series Processors AMD Ryzen™ Embedded R2000 Series Processors AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge")

CWE ID-CWE-822

Untrusted Pointer Dereference

CVE-2021-26381

CVSS Score-7.1||HIGH

EPSS-0.01% / 0.29%

7 Day CHG~0.00%

Published-10 Feb, 2026 | 19:47

Updated-11 Feb, 2026 | 14:11

Improper system call parameter validation in the Trusted OS may allow a malicious driver to perform mapping or unmapping operations on a large number of pages, potentially resulting in kernel memory corruption.

Product-AMD Ryzen™ Embedded V2000 Series Processors AMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors AMD Ryzen™ 3000 Series Desktop Processors AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics AMD Ryzen™ 4000 Series Desktop Processors AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics AMD Radeon™ RX 5000 Series Graphics Products AMD Ryzen™ Embedded R1000 Series Processors AMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors AMD Radeon™ RX 6000 Series Graphics Products AMD Radeon™ PRO V620 AMD Radeon™ PRO W6000 Series Graphics Products AMD Radeon™ PRO W5000 Series Graphics Products AMD Ryzen™ Embedded 5000 Series Processors AMD Radeon™ PRO V520 AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso")AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics AMD Ryzen™ Embedded V3000 Series Processors AMD Ryzen™ Embedded R2000 Series Processors AMD Ryzen™ 5000 Series Desktop Processors AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge")

CWE ID-CWE-770

Allocation of Resources Without Limits or Throttling

CVE-2024-36355

CVSS Score-7||HIGH

EPSS-0.01% / 0.21%

7 Day CHG~0.00%

Published-10 Feb, 2026 | 19:28

Updated-12 Feb, 2026 | 18:16

Improper input validation in the SMM handler could allow an attacker with Ring0 access to write to SMRAM and modify execution flow for S3 (sleep) wake up, potentially resulting in arbitrary code execution.