Vulnerabilities > AMD > Ryzen 5 5600Ge Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-11-09 CVE-2021-26391 Unspecified vulnerability in AMD products
Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.
local
low complexity
amd
7.8
2022-11-09 CVE-2021-26392 Out-of-bounds Write vulnerability in AMD products
Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA.
local
low complexity
amd CWE-787
7.8
2022-11-09 CVE-2021-26393 Memory Leak vulnerability in AMD products
Insufficient memory cleanup in the AMD Secure Processor (ASP) Trusted Execution Environment (TEE) may allow an authenticated attacker with privileges to generate a valid signed TA and potentially poison the contents of the process memory with attacker controlled data resulting in a loss of confidentiality.
local
low complexity
amd CWE-401
5.5
2022-08-10 CVE-2021-46778 Information Exposure Through Discrepancy vulnerability in AMD products
Execution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microarchitectures codenamed “Zen 1”, “Zen 2” and “Zen 3” that use simultaneous multithreading (SMT).
local
high complexity
amd CWE-203
5.6
2022-07-14 CVE-2021-26382 Unspecified vulnerability in AMD products
An attacker with root account privileges can load any legitimately signed firmware image into the Audio Co-Processor (ACP,) irrespective of the respective signing key being declared as usable for authenticating an ACP firmware image, potentially resulting in a denial of service.
local
low complexity
amd
4.4
2022-07-14 CVE-2021-26384 Out-of-bounds Write vulnerability in AMD products
A malformed SMI (System Management Interface) command may allow an attacker to establish a corrupted SMI Trigger Info data structure, potentially leading to out-of-bounds memory reads and writes when triggering an SMI resulting in a potential loss of resources.
local
low complexity
amd CWE-787
7.8
2022-05-10 CVE-2021-26352 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in AMD products
Insufficient bound checks in System Management Unit (SMU) PCIe Hot Plug table may result in access/updates from/to invalid address space that could result in denial of service.
local
low complexity
amd CWE-119
5.5
2022-05-10 CVE-2021-26390 Unspecified vulnerability in AMD products
A malicious or compromised UApp or ABL may coerce the bootloader into corrupting arbitrary memory potentially leading to loss of integrity of data.
local
low complexity
amd
6.2