Vulnerabilities > CVE-2021-26330 - Out-of-bounds Write vulnerability in AMD products

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

local

low complexity

amd

CWE-787

NVD

Published: 2021-11-16

Updated: 2021-11-19

Summary

AMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of resources.

Vulnerable Configurations

Part	Description	Count
OS	Amd AMD Epyc 7003 Firmware - AMD Epyc 7002 Firmware - AMD Epyc 7001 Firmware - AMD Epyc 72F3 Firmware - AMD Epyc 7313 Firmware - AMD Epyc 7313P Firmware - AMD Epyc 7343 Firmware - AMD Epyc 73F3 Firmware - AMD Epyc 7413 Firmware - AMD Epyc 7443 Firmware - AMD Epyc 7443P Firmware - AMD Epyc 7453 Firmware - AMD Epyc 74F3 Firmware - AMD Epyc 7513 Firmware - AMD Epyc 7543 Firmware - AMD Epyc 7543P Firmware - AMD Epyc 75F3 Firmware - AMD Epyc 7643 Firmware - AMD Epyc 7663 Firmware - AMD Epyc 7713 Firmware - AMD Epyc 7713P Firmware - AMD Epyc 7763 Firmware - AMD Epyc 7232P Firmware - AMD Epyc 7252 Firmware - AMD Epyc 7262 Firmware - AMD Epyc 7272 Firmware - AMD Epyc 7282 Firmware - AMD Epyc 7302 Firmware - AMD Epyc 7302P Firmware - AMD Epyc 7352 Firmware - AMD Epyc 7402 Firmware - AMD Epyc 7402P Firmware - AMD Epyc 7452 Firmware - AMD Epyc 7502 Firmware - AMD Epyc 7502P Firmware - AMD Epyc 7532 Firmware - AMD Epyc 7542 Firmware - AMD Epyc 7552 Firmware - AMD Epyc 7642 Firmware - AMD Epyc 7662 Firmware - AMD Epyc 7702 Firmware - AMD Epyc 7702P Firmware - AMD Epyc 7742 Firmware - AMD Epyc 7F32 Firmware - AMD Epyc 7F52 Firmware - AMD Epyc 7F72 Firmware - AMD Epyc 7251 Firmware - AMD Epyc 7281 Firmware - AMD Epyc 7301 Firmware - AMD Epyc 7351 Firmware - AMD Epyc 7351P Firmware - AMD Epyc 7401 Firmware - AMD Epyc 7401P Firmware - AMD Epyc 7451 Firmware - AMD Epyc 7501 Firmware - AMD Epyc 7551 Firmware - AMD Epyc 7551P Firmware - AMD Epyc 7601 Firmware -	58
Hardware	Amd AMD Epyc 7003 - AMD Epyc 7002 - AMD Epyc 7001 - AMD Epyc 72F3 - AMD Epyc 7313 - AMD Epyc 7313P - AMD Epyc 7343 - AMD Epyc 73F3 - AMD Epyc 7413 - AMD Epyc 7443 - AMD Epyc 7443P - AMD Epyc 7453 - AMD Epyc 74F3 - AMD Epyc 7513 - AMD Epyc 7543 - AMD Epyc 7543P - AMD Epyc 75F3 - AMD Epyc 7643 - AMD Epyc 7663 - AMD Epyc 7713 - AMD Epyc 7713P - AMD Epyc 7763 - AMD Epyc 7232P - AMD Epyc 7252 - AMD Epyc 7262 - AMD Epyc 7272 - AMD Epyc 7282 - AMD Epyc 7302 - AMD Epyc 7302P - AMD Epyc 7352 - AMD Epyc 7402 - AMD Epyc 7402P - AMD Epyc 7452 - AMD Epyc 7502 - AMD Epyc 7502P - AMD Epyc 7532 - AMD Epyc 7542 - AMD Epyc 7552 - AMD Epyc 7642 - AMD Epyc 7662 - AMD Epyc 7702 - AMD Epyc 7702P - AMD Epyc 7742 - AMD Epyc 7F32 - AMD Epyc 7F52 - AMD Epyc 7F72 - AMD Epyc 7251 - AMD Epyc 7281 - AMD Epyc 7301 - AMD Epyc 7351 - AMD Epyc 7351P - AMD Epyc 7401 - AMD Epyc 7401P - AMD Epyc 7451 - AMD Epyc 7501 - AMD Epyc 7551 - AMD Epyc 7551P - AMD Epyc 7601 -	58

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021