A malicious or compromised UApp or ABL could potentially change the value that the ASP uses for its reserved DRAM, to one outside of the fenced area, potentially leading to data exposure.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

The EPSS score is 0.00119.

Key SSVC decision points have not yet been added.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
AMD Ryzen™ Series affected
Version Status Constraints
various affected
AMD Athlon™ Series affected
Version Status Constraints
various affected

Configuration 1 [-]

cpe:2.3:a:amd:radeon_software:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND
cpe:2.3:o:amd:ryzen_3_3100_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_3100:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND
cpe:2.3:o:amd:ryzen_3_3300g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_3300g:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:amd:ryzen_3_3300x_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_3300x:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:amd:ryzen_3_5400u_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_5400u:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND
cpe:2.3:o:amd:ryzen_9_5900hs_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_9_5900hs:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND
cpe:2.3:o:amd:ryzen_9_5900hx_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_9_5900hx:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND
cpe:2.3:o:amd:ryzen_9_5980hs_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_9_5980hs:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND
cpe:2.3:o:amd:ryzen_9_5980hx_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_9_5980hx:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND
cpe:2.3:o:amd:ryzen_3_5125c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_5125c:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND
cpe:2.3:o:amd:ryzen_3_5425c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_5425c:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND
cpe:2.3:o:amd:ryzen_7_3700x_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_3700x:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND
cpe:2.3:o:amd:ryzen_9_3900x_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_9_3900x:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND
cpe:2.3:o:amd:ryzen_9_3950x_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_9_3950x:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND
cpe:2.3:o:amd:ryzen_7_3800x_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_3800x:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND
cpe:2.3:o:amd:ryzen_3_5425u_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_3_5425u:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND
cpe:2.3:o:amd:ryzen_5_3400g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_3400g:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND
cpe:2.3:o:amd:ryzen_7_5800h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_5800h:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND
cpe:2.3:o:amd:ryzen_7_5800hs_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_5800hs:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND
cpe:2.3:o:amd:ryzen_7_5800u_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_5800u:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND
cpe:2.3:o:amd:ryzen_7_5825c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_5825c:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND
cpe:2.3:o:amd:ryzen_7_5825u_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_7_5825u:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND
cpe:2.3:o:amd:ryzen_5_3450g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_3450g:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND
cpe:2.3:o:amd:ryzen_5_3600_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_3600:-:*:*:*:*:*:*:*

Configuration 25 [-]

AND
cpe:2.3:o:amd:ryzen_5_3600x_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_3600x:-:*:*:*:*:*:*:*

Configuration 26 [-]

AND
cpe:2.3:o:amd:ryzen_5_5560u_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5560u:-:*:*:*:*:*:*:*

Configuration 27 [-]

AND
cpe:2.3:o:amd:ryzen_5_5600h_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5600h:-:*:*:*:*:*:*:*

Configuration 28 [-]

AND
cpe:2.3:o:amd:ryzen_5_5600u_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5600u:-:*:*:*:*:*:*:*

Configuration 29 [-]

AND
cpe:2.3:o:amd:ryzen_5_5600hs_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5600hs:-:*:*:*:*:*:*:*

Configuration 30 [-]

AND
cpe:2.3:o:amd:ryzen_5_5600x_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5600x:-:*:*:*:*:*:*:*

Configuration 31 [-]

AND
cpe:2.3:o:amd:ryzen_5_5625c_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5625c:-:*:*:*:*:*:*:*

Configuration 32 [-]

AND
cpe:2.3:o:amd:ryzen_5_5625u_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5625u:-:*:*:*:*:*:*:*

Configuration 33 [-]

AND
cpe:2.3:o:amd:ryzen_5_5700g_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5700g:-:*:*:*:*:*:*:*

Configuration 34 [-]

AND
cpe:2.3:o:amd:ryzen_5_5700ge_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:ryzen_5_5700ge:-:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Amd Subscribe
Radeon Software Subscribe
Ryzen 3 3100 Subscribe
Ryzen 3 3100 Firmware Subscribe
Ryzen 3 3300g Subscribe
Ryzen 3 3300g Firmware Subscribe
Ryzen 3 3300x Subscribe
Ryzen 3 3300x Firmware Subscribe
Ryzen 3 5125c Subscribe
Ryzen 3 5125c Firmware Subscribe
Ryzen 3 5400u Subscribe
Ryzen 3 5400u Firmware Subscribe
Ryzen 3 5425c Subscribe
Ryzen 3 5425c Firmware Subscribe
Ryzen 3 5425u Subscribe
Ryzen 3 5425u Firmware Subscribe
Ryzen 5 3400g Subscribe
Ryzen 5 3400g Firmware Subscribe
Ryzen 5 3450g Subscribe
Ryzen 5 3450g Firmware Subscribe
Ryzen 5 3600 Subscribe
Ryzen 5 3600 Firmware Subscribe
Ryzen 5 3600x Subscribe
Ryzen 5 3600x Firmware Subscribe
Ryzen 5 5560u Subscribe
Ryzen 5 5560u Firmware Subscribe
Ryzen 5 5600h Subscribe
Ryzen 5 5600h Firmware Subscribe
Ryzen 5 5600hs Subscribe
Ryzen 5 5600hs Firmware Subscribe
Ryzen 5 5600u Subscribe
Ryzen 5 5600u Firmware Subscribe
Ryzen 5 5600x Subscribe
Ryzen 5 5600x Firmware Subscribe
Ryzen 5 5625c Subscribe
Ryzen 5 5625c Firmware Subscribe
Ryzen 5 5625u Subscribe
Ryzen 5 5625u Firmware Subscribe
Ryzen 5 5700g Subscribe
Ryzen 5 5700g Firmware Subscribe
Ryzen 5 5700ge Subscribe
Ryzen 5 5700ge Firmware Subscribe
Ryzen 7 3700x Subscribe
Ryzen 7 3700x Firmware Subscribe
Ryzen 7 3800x Subscribe
Ryzen 7 3800x Firmware Subscribe
Ryzen 7 5800h Subscribe
Ryzen 7 5800h Firmware Subscribe
Ryzen 7 5800hs Subscribe
Ryzen 7 5800hs Firmware Subscribe
Ryzen 7 5800u Subscribe
Ryzen 7 5800u Firmware Subscribe
Ryzen 7 5825c Subscribe
Ryzen 7 5825c Firmware Subscribe
Ryzen 7 5825u Subscribe
Ryzen 7 5825u Firmware Subscribe
Ryzen 9 3900x Subscribe
Ryzen 9 3900x Firmware Subscribe
Ryzen 9 3950x Subscribe
Ryzen 9 3950x Firmware Subscribe
Ryzen 9 5900hs Subscribe
Ryzen 9 5900hs Firmware Subscribe
Ryzen 9 5900hx Subscribe
Ryzen 9 5900hx Firmware Subscribe
Ryzen 9 5980hs Subscribe
Ryzen 9 5980hs Firmware Subscribe
Ryzen 9 5980hx Subscribe
Ryzen 9 5980hx Firmware Subscribe
Advisories
Source ID Title
EUVD EUVD EUVD-2021-13169 A malicious or compromised UApp or ABL could potentially change the value that the ASP uses for its reserved DRAM, to one outside of the fenced area, potentially leading to data exposure.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027 cve-icon cve-icon
History

No history.

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: AMD

Published:

Updated: 2024-09-17T02:21:07.904Z

Reserved: 2021-01-29T00:00:00

Link: CVE-2021-26363

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2022-05-12T19:15:48.107

Modified: 2024-11-21T05:56:12.753

Link: CVE-2021-26363

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses