CVE-2021-26391 - Vulnerability Details

- hw: amd: Insufficient verification of header signature may lead to unwanted code execution problem

Description

Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.

Published: 2022-11-09

Score: 7.8 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

AMD

AMD Radeon RX 5000 Series & PRO W5000 Series

affected

Version	Status	Constraints
`AMD Radeon Software`	affected	< 22.5.2
`AMD Radeon Pro Software Enterprise`	affected	< 22.Q2
`Enterprise Driver`	affected	< 22.10.20

AMD

AMD Radeon RX 6000 Series & PRO W6000 Series

affected

Version	Status	Constraints
`AMD Radeon Software`	affected	< 22.5.2
`AMD Radeon Pro Software Enterprise`	affected	< 22.Q2
`Enterprise Driver`	affected	< 22.10.20

Configuration 1 [-]

AND

OR	cpe:2.3:a:amd:enterprise_driver::::::::
	cpe:2.3:a:amd:radeon_pro_software:::::enterprise:::*
	cpe:2.3:a:amd:radeon_software::::::::

OR	cpe:2.3:h:amd:radeon_pro_w5500:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5500x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5700:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w5700x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6300m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6400:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6500m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600m:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6600x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800x:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6800x_duo:-:::::::*
	cpe:2.3:h:amd:radeon_pro_w6900x:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5300:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5300_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5300m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5500m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5600m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_5700m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6300m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6400:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6500_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6500m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6600s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6650m_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6700s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6750_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800m:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6800s:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6850m_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6900_xt:-:::::::*
	cpe:2.3:h:amd:radeon_rx_6950_xt:-:::::::*

Configuration 2 [-]

AND

cpe:2.3:o:amd:radeon_rx_vega_56_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:radeon_rx_vega_56:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:amd:radeon_rx_vega_64_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:radeon_rx_vega_64:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:amd:ryzen_3_5300ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_3_5300ge:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:amd:ryzen_3_5300g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_3_5300g:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600ge:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600g:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:amd:ryzen_7_5700ge_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5700ge:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:amd:ryzen_7_5700g_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5700g:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:amd:ryzen_3_5300u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_3_5300u:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:amd:ryzen_5_5500u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5500u:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:amd:ryzen_7_5700u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5700u:-:*:*:*:*:*:*:*

Configuration 13 [-]

AND

cpe:2.3:o:amd:ryzen_3_5400u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_3_5400u:-:*:*:*:*:*:*:*

Configuration 14 [-]

AND

cpe:2.3:o:amd:ryzen_5_5560u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5560u:-:*:*:*:*:*:*:*

Configuration 15 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600u:-:*:*:*:*:*:*:*

Configuration 16 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600h:-:*:*:*:*:*:*:*

Configuration 17 [-]

AND

cpe:2.3:o:amd:ryzen_5_5600hs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_5_5600hs:-:*:*:*:*:*:*:*

Configuration 18 [-]

AND

cpe:2.3:o:amd:ryzen_7_5800u_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5800u:-:*:*:*:*:*:*:*

Configuration 19 [-]

AND

cpe:2.3:o:amd:ryzen_7_5800h_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5800h:-:*:*:*:*:*:*:*

Configuration 20 [-]

AND

cpe:2.3:o:amd:ryzen_7_5800hs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_7_5800hs:-:*:*:*:*:*:*:*

Configuration 21 [-]

AND

cpe:2.3:o:amd:ryzen_9_5900hs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_9_5900hs:-:*:*:*:*:*:*:*

Configuration 22 [-]

AND

cpe:2.3:o:amd:ryzen_9_5900hx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_9_5900hx:-:*:*:*:*:*:*:*

Configuration 23 [-]

AND

cpe:2.3:o:amd:ryzen_9_5980hs_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_9_5980hs:-:*:*:*:*:*:*:*

Configuration 24 [-]

AND

cpe:2.3:o:amd:ryzen_9_5980hx_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:amd:ryzen_9_5980hx:-:*:*:*:*:*:*:*

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
EUVD	EUVD-2021-13197	Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.

No CVSS v4.0

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00043.

Exploitation none

Automatable no

Technical Impact total

References

Link	Providers
https://nvd.nist.gov/vuln/detail/CVE-2021-26391
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1029
https://www.cve.org/CVERecord?id=CVE-2021-26391

History

Thu, 01 May 2025 15:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-347
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}`

Subscriptions

Amd Enterprise Driver Radeon Pro Software Radeon Pro W5500 Radeon Pro W5500x Radeon Pro W5700 Radeon Pro W5700x Radeon Pro W6300m Radeon Pro W6400 Radeon Pro W6500m Radeon Pro W6600 Radeon Pro W6600m Radeon Pro W6600x Radeon Pro W6800 Radeon Pro W6800x Radeon Pro W6800x Duo Radeon Pro W6900x Radeon Rx 5300 Radeon Rx 5300 Xt Radeon Rx 5300m Radeon Rx 5500 Radeon Rx 5500 Xt Radeon Rx 5500m Radeon Rx 5600 Radeon Rx 5600 Xt Radeon Rx 5600m Radeon Rx 5700 Radeon Rx 5700 Xt Radeon Rx 5700m Radeon Rx 6300m Radeon Rx 6400 Radeon Rx 6500 Xt Radeon Rx 6500m Radeon Rx 6600 Radeon Rx 6600 Xt Radeon Rx 6600m Radeon Rx 6600s Radeon Rx 6650 Xt Radeon Rx 6650m Radeon Rx 6650m Xt Radeon Rx 6700 Radeon Rx 6700 Xt Radeon Rx 6700m Radeon Rx 6700s Radeon Rx 6750 Xt Radeon Rx 6800 Radeon Rx 6800 Xt Radeon Rx 6800m Radeon Rx 6800s Radeon Rx 6850m Xt Radeon Rx 6900 Xt Radeon Rx 6950 Xt Radeon Rx Vega 56 Radeon Rx Vega 56 Firmware Radeon Rx Vega 64 Radeon Rx Vega 64 Firmware Radeon Software Ryzen 3 5300g Ryzen 3 5300g Firmware Ryzen 3 5300ge Ryzen 3 5300ge Firmware Ryzen 3 5300u Ryzen 3 5300u Firmware Ryzen 3 5400u Ryzen 3 5400u Firmware Ryzen 5 5500u Ryzen 5 5500u Firmware Ryzen 5 5560u Ryzen 5 5560u Firmware Ryzen 5 5600g Ryzen 5 5600g Firmware Ryzen 5 5600ge Ryzen 5 5600ge Firmware Ryzen 5 5600h Ryzen 5 5600h Firmware Ryzen 5 5600hs Ryzen 5 5600hs Firmware Ryzen 5 5600u Ryzen 5 5600u Firmware Ryzen 7 5700g Ryzen 7 5700g Firmware Ryzen 7 5700ge Ryzen 7 5700ge Firmware Ryzen 7 5700u Ryzen 7 5700u Firmware Ryzen 7 5800h Ryzen 7 5800h Firmware Ryzen 7 5800hs Ryzen 7 5800hs Firmware Ryzen 7 5800u Ryzen 7 5800u Firmware Ryzen 9 5900hs Ryzen 9 5900hs Firmware Ryzen 9 5900hx Ryzen 9 5900hx Firmware Ryzen 9 5980hs Ryzen 9 5980hs Firmware Ryzen 9 5980hx Ryzen 9 5980hx Firmware

MITRE

Status: PUBLISHED

Assigner: AMD

Published: 2022-11-09T20:44:25.253Z

Updated: 2025-05-01T14:19:25.590Z

Reserved: 2021-01-29T00:00:00.000Z

Link: CVE-2021-26391

Vulnrichment

Updated: 2024-08-03T20:26:25.325Z

NVD

Status : Modified

Published: 2022-11-09T21:15:12.150

Modified: 2025-05-01T15:15:54.320

Link: CVE-2021-26391

Redhat

Severity : Moderate

Publid Date: 2022-11-08T06:30:00Z

Links: CVE-2021-26391 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

Tracking

Attack Vector Local

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

Exploitation none

Automatable no

Technical Impact total

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object