Vulnerabilities > AMD > Milanpi SP3 Firmware

DATE CVE VULNERABILITY TITLE RISK
2023-01-11 CVE-2022-23813 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in AMD Milanpi-Sp3 Firmware and Romepi Firmware
The software interfaces to ASP and SMU may not enforce the SNP memory security policy resulting in a potential loss of integrity of guest memory in a confidential compute environment.
network
low complexity
amd CWE-119
5.3
2023-01-11 CVE-2022-23814 Improper Input Validation vulnerability in AMD Milanpi-Sp3 Firmware
Failure to validate addresses provided by software to BIOS commands may result in a potential loss of integrity of guest memory in a confidential compute environment.
network
low complexity
amd CWE-20
5.3