Vulnerabilities > CVE-2021-46758 - Unspecified vulnerability in AMD products

047910
CVSS 6.1 - MEDIUM
Attack vector
PHYSICAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
HIGH
Availability impact
HIGH
low complexity
amd

Summary

Insufficient validation of SPI flash addresses in the ASP (AMD Secure Processor) bootloader may allow an attacker to read data in memory mapped beyond SPI flash resulting in a potential loss of availability and integrity.

Vulnerable Configurations

Part Description Count
OS
Amd
138
Hardware
Amd
61