CVE-2021-26391 - Vulnerability Details

CVE-2021-26391 - hw: amd: Insufficient verification of header signature may lead to unwanted code execution problem

Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00043.

Exploitation none

Automatable no

Technical Impact total

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

AMD

AMD Radeon RX 5000 Series & PRO W5000 Series

affected

Version	Status	Constraints
`AMD Radeon Software`	affected	< 22.5.2
`AMD Radeon Pro Software Enterprise`	affected	< 22.Q2
`Enterprise Driver`	affected	< 22.10.20

AMD

AMD Radeon RX 6000 Series & PRO W6000 Series

affected

Version	Status	Constraints
`AMD Radeon Software`	affected	< 22.5.2
`AMD Radeon Pro Software Enterprise`	affected	< 22.Q2
`Enterprise Driver`	affected	< 22.10.20

Configuration 1 [-]

AND

OR	cpe:2.3:a:amd:enterprise_driver::::::::
	cpe:2.3:a:amd:radeon_pro_software:::::enterprise:::*
	cpe:2.3:a:amd:radeon_software::::::::

OR	cpe:2.3:h:amd:radeon_pro_w5500:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5500x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5700:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5700x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6300m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6400:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6500m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800x_duo:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6900x:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5300:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5300_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5300m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6300m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6400:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6500_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6500m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650m_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6750_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6850m_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6900_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6950_xt:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:amd:radeon_rx_vega_56_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:radeon_rx_vega_56:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:amd:radeon_rx_vega_64_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:radeon_rx_vega_64:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:amd:ryzen_3_5300ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_3_5300ge:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:amd:ryzen_3_5300g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_3_5300g:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600ge:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600g:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:amd:ryzen_7_5700ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5700ge:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:amd:ryzen_7_5700g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5700g:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:amd:ryzen_3_5300u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_3_5300u:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:amd:ryzen_5_5500u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5500u:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:amd:ryzen_7_5700u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5700u:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:amd:ryzen_3_5400u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_3_5400u:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:amd:ryzen_5_5560u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5560u:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600u:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600h:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600hs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600hs:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:amd:ryzen_7_5800u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5800u:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:amd:ryzen_7_5800h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5800h:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:amd:ryzen_7_5800hs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5800hs:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:amd:ryzen_9_5900hs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_9_5900hs:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:amd:ryzen_9_5900hx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_9_5900hx:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:amd:ryzen_9_5980hs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_9_5980hs:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:amd:ryzen_9_5980hx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_9_5980hx:-:*:*:*:*:*:*:*

No data.

Project Subscriptions

Vendors	Products
Amd Subscribe	Enterprise Driver Subscribe Radeon Pro Software Subscribe Radeon Pro W5500 Subscribe Radeon Pro W5500x Subscribe Radeon Pro W5700 Subscribe Radeon Pro W5700x Subscribe Radeon Pro W6300m Subscribe Radeon Pro W6400 Subscribe Radeon Pro W6500m Subscribe Radeon Pro W6600 Subscribe Radeon Pro W6600m Subscribe Radeon Pro W6600x Subscribe Radeon Pro W6800 Subscribe Radeon Pro W6800x Subscribe Radeon Pro W6800x Duo Subscribe Radeon Pro W6900x Subscribe Radeon Rx 5300 Subscribe Radeon Rx 5300 Xt Subscribe Radeon Rx 5300m Subscribe Radeon Rx 5500 Subscribe Radeon Rx 5500 Xt Subscribe Radeon Rx 5500m Subscribe Radeon Rx 5600 Subscribe Radeon Rx 5600 Xt Subscribe Radeon Rx 5600m Subscribe Radeon Rx 5700 Subscribe Radeon Rx 5700 Xt Subscribe Radeon Rx 5700m Subscribe Radeon Rx 6300m Subscribe Radeon Rx 6400 Subscribe Radeon Rx 6500 Xt Subscribe Radeon Rx 6500m Subscribe Radeon Rx 6600 Subscribe Radeon Rx 6600 Xt Subscribe Radeon Rx 6600m Subscribe Radeon Rx 6600s Subscribe Radeon Rx 6650 Xt Subscribe Radeon Rx 6650m Subscribe Radeon Rx 6650m Xt Subscribe Radeon Rx 6700 Subscribe Radeon Rx 6700 Xt Subscribe Radeon Rx 6700m Subscribe Radeon Rx 6700s Subscribe Radeon Rx 6750 Xt Subscribe Radeon Rx 6800 Subscribe Radeon Rx 6800 Xt Subscribe Radeon Rx 6800m Subscribe Radeon Rx 6800s Subscribe Radeon Rx 6850m Xt Subscribe Radeon Rx 6900 Xt Subscribe Radeon Rx 6950 Xt Subscribe Radeon Rx Vega 56 Subscribe Radeon Rx Vega 56 Firmware Subscribe Radeon Rx Vega 64 Subscribe Radeon Rx Vega 64 Firmware Subscribe Radeon Software Subscribe Ryzen 3 5300g Subscribe Ryzen 3 5300g Firmware Subscribe Ryzen 3 5300ge Subscribe Ryzen 3 5300ge Firmware Subscribe Ryzen 3 5300u Subscribe Ryzen 3 5300u Firmware Subscribe Ryzen 3 5400u Subscribe Ryzen 3 5400u Firmware Subscribe Ryzen 5 5500u Subscribe Ryzen 5 5500u Firmware Subscribe Ryzen 5 5560u Subscribe Ryzen 5 5560u Firmware Subscribe Ryzen 5 5600g Subscribe Ryzen 5 5600g Firmware Subscribe Ryzen 5 5600ge Subscribe Ryzen 5 5600ge Firmware Subscribe Ryzen 5 5600h Subscribe Ryzen 5 5600h Firmware Subscribe Ryzen 5 5600hs Subscribe Ryzen 5 5600hs Firmware Subscribe Ryzen 5 5600u Subscribe Ryzen 5 5600u Firmware Subscribe Ryzen 7 5700g Subscribe Ryzen 7 5700g Firmware Subscribe Ryzen 7 5700ge Subscribe Ryzen 7 5700ge Firmware Subscribe Ryzen 7 5700u Subscribe Ryzen 7 5700u Firmware Subscribe Ryzen 7 5800h Subscribe Ryzen 7 5800h Firmware Subscribe Ryzen 7 5800hs Subscribe Ryzen 7 5800hs Firmware Subscribe Ryzen 7 5800u Subscribe Ryzen 7 5800u Firmware Subscribe Ryzen 9 5900hs Subscribe Ryzen 9 5900hs Firmware Subscribe Ryzen 9 5900hx Subscribe Ryzen 9 5900hx Firmware Subscribe Ryzen 9 5980hs Subscribe Ryzen 9 5980hs Firmware Subscribe Ryzen 9 5980hx Subscribe Ryzen 9 5980hx Firmware Subscribe

Advisories

Source	ID	Title
EUVD	EUVD-2021-13197	Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
https://nvd.nist.gov/vuln/detail/CVE-2021-26391
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1029
https://www.cve.org/CVERecord?id=CVE-2021-26391

History

Thu, 01 May 2025 15:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-347
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Projects

Sign in to view the affected projects.

MITRE

Status: PUBLISHED

Assigner: AMD

Published: 2022-11-09T20:44:25.253Z

Updated: 2025-05-01T14:19:25.590Z

Reserved: 2021-01-29T00:00:00.000Z

Link: CVE-2021-26391

Vulnrichment

Updated: 2024-08-03T20:26:25.325Z

NVD

Status : Modified

Published: 2022-11-09T21:15:12.150

Modified: 2025-05-01T15:15:54.320

Link: CVE-2021-26391

Redhat

Severity : Moderate

Publid Date: 2022-11-08T06:30:00Z

Links: CVE-2021-26391 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Project Subscriptions

Projects

JSON object

JSON object

JSON object

JSON object

JSON object