Vulnerabilities > AMD > Ryzen Threadripper PRO 3995Wx Firmware > High

DATE CVE VULNERABILITY TITLE RISK
2022-05-12 CVE-2021-26386 Out-of-bounds Write vulnerability in AMD products
A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader potentially leading to corrupt memory and code execution.
local
low complexity
amd CWE-787
7.8
2022-05-12 CVE-2021-26366 Unspecified vulnerability in AMD products
An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a loss of system integrity.
local
low complexity
amd
7.1
2022-02-04 CVE-2020-12965 Injection vulnerability in AMD products
When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage.
network
low complexity
amd CWE-74
7.5