CVE Vulnerabilities

CVE-2021-26360

Published: Nov 09, 2022 | Modified: Aug 08, 2023
CVSS 3.x
7.8
HIGH
Source:
NVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
6.4 MODERATE
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H
Ubuntu

An attacker with local access to the system can make unauthorized modifications of the security configuration of the SOC registers. This could allow potential corruption of AMD secure processor’s encrypted memory contents which may lead to arbitrary code execution in ASP.

Affected Software

Name Vendor Start Version End Version
Enterprise_driver Amd * 22.10.20 (excluding)
Radeon_pro_software Amd * 22.q2 (excluding)
Radeon_software Amd * 22.5.2 (excluding)

References