Vulnerabilities > CVE-2021-26406 - Unspecified vulnerability in AMD products

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

amd

NVD

Published: 2023-05-09

Updated: 2023-05-22

Summary

Insufficient validation in parsing Owner's Certificate Authority (OCA) certificates in SEV (AMD Secure Encrypted Virtualization) and SEV-ES user application can lead to a host crash potentially resulting in denial of service.

Vulnerable Configurations

Part	Description	Count
OS	Amd AMD Epyc 7232P Firmware Romepi_1.0.0.A AMD Epyc 7252 Firmware Romepi_1.0.0.A AMD Epyc 7262 Firmware Romepi_1.0.0.A AMD Epyc 7272 Firmware Romepi_1.0.0.A AMD Epyc 7282 Firmware Romepi_1.0.0.A AMD Epyc 7302 Firmware Romepi_1.0.0.A AMD Epyc 7302P Firmware Romepi_1.0.0.A AMD Epyc 7352 Firmware Romepi_1.0.0.A AMD Epyc 7402 Firmware Romepi_1.0.0.A AMD Epyc 7402P Firmware Romepi_1.0.0.A AMD Epyc 7452 Firmware Romepi_1.0.0.A AMD Epyc 7502 Firmware Romepi_1.0.0.A AMD Epyc 7502P Firmware Romepi_1.0.0.A AMD Epyc 7532 Firmware Romepi_1.0.0.A AMD Epyc 7542 Firmware Romepi_1.0.0.A AMD Epyc 7552 Firmware Romepi_1.0.0.A AMD Epyc 7642 Firmware Romepi_1.0.0.A AMD Epyc 7662 Firmware Romepi_1.0.0.A AMD Epyc 7702 Firmware Romepi_1.0.0.A AMD Epyc 7702P Firmware Romepi_1.0.0.A AMD Epyc 7742 Firmware Romepi_1.0.0.A AMD Epyc 7F32 Firmware Romepi_1.0.0.A AMD Epyc 7F52 Firmware Romepi_1.0.0.A AMD Epyc 7F72 Firmware Romepi_1.0.0.A AMD Epyc 7H12 Firmware Romepi_1.0.0.A AMD Epyc 7251 Firmware Naplespi_1.0.0.E AMD Epyc 7261 Firmware Naplespi_1.0.0.E AMD Epyc 7281 Firmware Naplespi_1.0.0.E AMD Epyc 7301 Firmware Naplespi_1.0.0.E AMD Epyc 7351 Firmware Naplespi_1.0.0.E AMD Epyc 7351P Firmware Naplespi_1.0.0.E AMD Epyc 7371 Firmware Naplespi_1.0.0.E AMD Epyc 7401 Firmware Naplespi_1.0.0.E AMD Epyc 7401P Firmware Naplespi_1.0.0.E AMD Epyc 7451 Firmware Naplespi_1.0.0.E AMD Epyc 7501 Firmware Naplespi_1.0.0.E AMD Epyc 7551 Firmware Naplespi_1.0.0.E AMD Epyc 7551P Firmware Naplespi_1.0.0.E AMD Epyc 7571 Firmware Naplespi_1.0.0.E AMD Epyc 7601 Firmware Naplespi_1.0.0.E	40
Hardware	Amd AMD Epyc 7232P - AMD Epyc 7252 - AMD Epyc 7262 - AMD Epyc 7272 - AMD Epyc 7282 - AMD Epyc 7302 - AMD Epyc 7302P - AMD Epyc 7352 - AMD Epyc 7402 - AMD Epyc 7402P - AMD Epyc 7452 - AMD Epyc 7502 - AMD Epyc 7502P - AMD Epyc 7532 - AMD Epyc 7542 - AMD Epyc 7552 - AMD Epyc 7642 - AMD Epyc 7662 - AMD Epyc 7702 - AMD Epyc 7702P - AMD Epyc 7742 - AMD Epyc 7F32 - AMD Epyc 7F52 - AMD Epyc 7F72 - AMD Epyc 7H12 - AMD Epyc 7251 - AMD Epyc 7261 - AMD Epyc 7281 - AMD Epyc 7301 - AMD Epyc 7351 - AMD Epyc 7351P - AMD Epyc 7371 - AMD Epyc 7401 - AMD Epyc 7401P - AMD Epyc 7451 - AMD Epyc 7501 - AMD Epyc 7551 - AMD Epyc 7551P - AMD Epyc 7571 - AMD Epyc 7601 -	40

Summary

Vulnerable Configurations

References