CVE-2021-26353 - OpenCVE

Failure to validate inputs in SMM may allow an attacker to create a mishandled error leaving the DRTM UApp in a partially initialized state potentially resulting in loss of memory integrity.

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:L/AC:L/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Amd	Epyc 7713p Firmware Epyc 7443p Epyc 7513 Epyc 73f3 Firmware Epyc 7313 Firmware Epyc 75f3 Epyc 7763 Epyc 7763 Firmware Epyc 7313 Epyc 7663 Firmware Epyc 7443 Epyc 7413 Epyc 7543 Firmware Epyc 7543p Firmware Epyc 7663 Epyc 7713 Epyc 7413 Firmware Epyc 7643 Firmware Epyc 7713 Firmware Epyc 7343 Epyc 7373x Epyc 7573x Firmware Epyc 75f3 Firmware Epyc 7453 Firmware Epyc 7543 Epyc 7773x Firmware Epyc 7713p Epyc 7373x Firmware Epyc 7313p Epyc 7343 Firmware Epyc 7643 Epyc 7543p Epyc 7473x Firmware Epyc 7453 Epyc 73f3 Epyc 7313p Firmware Epyc 72f3 Firmware Epyc 7473x Epyc 74f3 Firmware Epyc 7773x Epyc 7513 Firmware Epyc 7443 Firmware Epyc 74f3 Epyc 7443p Firmware Epyc 72f3 Epyc 7573x

Configuration 1 [-]

AND

cpe:2.3:o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_75f3:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7543p:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:amd:epyc_7543_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7543:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7513:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7453:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_74f3:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7443p:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:amd:epyc_7443_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7443:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7413:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_73f3:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7343:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7313p:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:amd:epyc_7313_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7313:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_72f3:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7773x:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:amd:epyc_7473x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7473x:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:amd:epyc_7573x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7573x:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:amd:epyc_7373x_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:amd:epyc_7373x:-:*:*:*:*:*:*:*

References

Link	Resource
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1032

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: AMD

Published: 2022-05-10T18:33:42.470384Z

Updated: 2023-01-11T07:01:59.843980Z

Reserved: 2021-01-29T00:00:00

Link: CVE-2021-26353

JSON object: View

NVD Information

Status : Modified

Published: 2022-05-10T19:15:08.657

Modified: 2023-11-07T03:31:42.527

Link: CVE-2021-26353

JSON object: View

Redhat Information

No data.

CWE

CWE-665