Vulnerabilities > AMD > Ryzen Threadripper PRO 3955Wx Firmware > High

DATE	CVE	VULNERABILITY TITLE	RISK
2022-05-12	CVE-2021-26386	Out-of-bounds Write vulnerability in AMD products A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader potentially leading to corrupt memory and code execution. local low complexity amd CWE-787	7.8
2022-05-12	CVE-2021-26366	Unspecified vulnerability in AMD products An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity. local low complexity amd	7.1
2022-02-04	CVE-2020-12965	Injection vulnerability in AMD products When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage. network low complexity amd CWE-74	7.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.