Security News > 2021 > November > AMD reveals an Epyc 50 flaws – 23 of them rated high severity. Intel has 25 bugs, too

AMD reveals an Epyc 50 flaws – 23 of them rated high severity. Intel has 25 bugs, too
2021-11-12 06:02

AMD alone dropped 50 new CVEs on Thursday, 23 of them rated of "High" concern, meaning they're rated at between 7.0 and 8.9 on the the-point Common Vulnerability Scoring System.

Let's start with the 27 flaws in the AMD Graphics Driver for Windows 10 - 18 of them rated High - because at least they're in software and Microsoft and Adobe's patch issuance cadence means readers could be in the mood to fix code.

AMD's EPYC processors - all three generations of 'em - have 22 flaws, four of them rated High.

CVE-2020-12961 - A potential vulnerability exists in AMD Platform Security Processor that may allow an attacker to zero any privileged register on the System Management Network which may lead to bypassing SPI ROM protections.

INTEL-SA-00509 - Which includes 10 CVEs I Intel WiFi products, allowing escalation of privilege, denial of service, and information disclosure.

INTEL-SA-00562 - Bad BIOS may allow escalation of privileges in 10 types of Intel CPU ranging from this year's Xeons to Core CPUs from 2016 , and even some 2013 Celerons.


News URL

https://go.theregister.com/feed/www.theregister.com/2021/11/12/amd_and_intel_flaws/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2021-11-16 CVE-2020-12961 Unspecified vulnerability in AMD products
A potential vulnerability exists in AMD Platform Security Processor (PSP) that may allow an attacker to zero any privileged register on the System Management Network which may lead to bypassing SPI ROM protections.
local
low complexity
amd
7.8

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Intel 6314 31 755 708 45 1539
AMD 892 5 120 122 27 274