{"id": "CVE-2021-46757", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.8, "attackVector": "LOCAL", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 1.8}]}, "published": "2024-02-13T20:15:50.060", "references": [{"url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001", "tags": ["Vendor Advisory"], "source": "psirt@amd.com"}, {"url": "https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Insufficient checking of memory buffer in ASP\nSecure OS may allow an attacker with a malicious TA to read/write to the ASP\nSecure OS kernel virtual address space potentially leading to privilege\nescalation."}, {"lang": "es", "value": "Una comprobaci\u00f3n insuficiente del b\u00fafer de memoria en ASP Secure OS puede permitir que un atacante con un TA malicioso lea/escriba en el espacio de direcciones virtuales del kernel de ASP Secure OS, lo que podr\u00eda provocar una escalada de privilegios."}], "lastModified": "2024-11-21T06:34:39.013", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_5950e_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "945D1A7C-13D6-4E1D-A293-46AB61A51015", "versionEndExcluding": "embam4pi_1.0.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_5950e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B2CDC476-E234-46D1-9B89-908638B03C11"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_5900e_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "680BA0B9-AA41-49AA-8D9D-C51DD6B7B69F", "versionEndExcluding": "embam4pi_1.0.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_5900e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "916C3DDF-3217-4500-A8F6-880B49B65EC0"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_5800e_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B1F26E7C-ABDA-4E83-8212-131248F540A3", "versionEndExcluding": "embam4pi_1.0.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_5800e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "72EB6E15-8E8D-454B-95A3-21467EB11EC8"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_5600e_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9A00516-2CD6-4DBD-85DB-4650AD6E7FBC", "versionEndExcluding": "embam4pi_1.0.0.0"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_5600e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "412CD3E7-DD64-465F-A578-34F1155FA7B4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_v2516_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47AA31D3-F690-452F-9DEE-B94F36B45FFD", "versionEndExcluding": "embeddedpi-fp6_1.0.0.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_v2516:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F6402F9A-B638-4A4E-9D24-53B2AFB42059"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_v2546_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BA990A91-218B-465D-8900-D50651E26472", "versionEndExcluding": "embeddedpi-fp6_1.0.0.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_v2546:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DC8E890D-7A7F-479E-B555-00D948784F50"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_v2718_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8DDB6676-2682-42E5-9316-2DE65C086A8C", "versionEndExcluding": "embeddedpi-fp6_1.0.0.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_v2718:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D910E1FD-3C27-4993-B827-AA6F9186A717"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_v2748_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D7A31411-12D6-4CC0-9CF7-72C8ACA92DF2", "versionEndExcluding": "embeddedpi-fp6_1.0.0.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_v2748:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "99DD7CCE-AEA5-4ABC-8764-FEC55E9D2ABB"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_r2312_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EC578789-BA65-4473-86A8-EDC1DA31D5C2", "versionEndExcluding": "embeddedpi-fp6_1.0.0.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_r2312:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "10E2A657-E504-4581-BA35-9B6C2BD46323"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:amd:ryzen_embedded_r2314_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "56D1FDE4-4C56-4EC5-A0DF-84D80AD6320E", "versionEndExcluding": "embeddedpi-fp6_1.0.0.6"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:amd:ryzen_embedded_r2314:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D68042FB-736E-43AD-9A63-AAE8C342FF8F"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "psirt@amd.com"}
