Vulnerabilities > AMD > Ryzen Threadripper 2950X Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-02-04 CVE-2020-12965 Injection vulnerability in AMD products
When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage.
network
low complexity
amd CWE-74
7.5
7.5
2021-11-16 CVE-2021-26336 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in AMD products
Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components.
local
low complexity
amd CWE-119
5.5
5.5
2021-11-16 CVE-2021-26337 Unspecified vulnerability in AMD products
Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM resulting in SMU not servicing further requests.
local
low complexity
amd
5.5
5.5