Vulnerabilities > AMD > Ryzen 5950X Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-05-09 CVE-2021-46754 Improper Input Validation vulnerability in AMD products
Insufficient input validation in the ASP (AMD Secure Processor) bootloader may allow an attacker with a compromised Uapp or ABL to coerce the bootloader into exposing sensitive information to the SMU (System Management Unit) resulting in a potential loss of confidentiality and integrity.
network
low complexity
amd CWE-20
critical
9.1
2023-05-09 CVE-2021-46753 Unspecified vulnerability in AMD products
Failure to validate the length fields of the ASP (AMD Secure Processor) sensor fusion hub headers may allow an attacker with a malicious Uapp or ABL to map the ASP sensor fusion hub region and overwrite data structures leading to a potential loss of confidentiality and integrity.
network
low complexity
amd
critical
9.1