CVE-2021-46750 - Vulnerability Details - OpenCVE

Failure to validate the address and size in TEE (Trusted Execution Environment) may allow a malicious x86 attacker to send malformed messages to the graphics mailbox resulting in an overlap of a TMR (Trusted Memory Region) that was previously allocated by the ASP bootloader leading to a potential loss of integrity.

No CVSS v4.0

Attack Vector Local

Attack Complexity High

Privileges Required High

Scope Unchanged

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4012.html
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-5007.html
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html

History

Sat, 06 Sep 2025 16:15:00 +0000

Type	Values Removed	Values Added
Description		Failure to validate the address and size in TEE (Trusted Execution Environment) may allow a malicious x86 attacker to send malformed messages to the graphics mailbox resulting in an overlap of a TMR (Trusted Memory Region) that was previously allocated by the ASP bootloader leading to a potential loss of integrity.
Weaknesses		CWE-190
References		https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4012.html https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-5007.html https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html
Metrics		cvssV3_1 `{'score': 3, 'vector': 'CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N'}`

MITRE

Status: PUBLISHED

Assigner: AMD

Published: 2025-09-06T16:03:55.584Z

Updated: 2025-09-06T16:03:55.584Z

Reserved: 2022-03-31T16:50:27.866Z

Link: CVE-2021-46750

Vulnrichment

No data.

NVD

Status : Received

Published: 2025-09-06T16:15:30.783

Modified: 2025-09-06T16:15:30.783

Link: CVE-2021-46750

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2021-46750", "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "state": "PUBLISHED", "assignerShortName": "AMD", "dateReserved": "2022-03-31T16:50:27.866Z", "datePublished": "2025-09-06T16:03:55.584Z", "dateUpdated": "2025-09-06T16:03:55.584Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "product": "AMD Athlon\u2122 3000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "PicassoPI-FP5 1.0.0.E"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 3000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "PicassoPI-FP5 1.0.0.E"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 7035 Series Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "RembrandtPI-FP7_0.0.8.0 RC1"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 4000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "RenoirPI-FP6 1.0.0.8"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 6000 Series Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "RembrandtPI-FP7_0.0.8.0 RC1"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 7030 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "CezannePI-FP6 1.0.0.8"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 5000 Series Mobile Processors with Radeon\u2122 Graphics", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "CezannePI-FP6 1.0.0.8"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 4000 Series Desktop Processors", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "ComboAM4v2 PI 1.2.0.5"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 Embedded R1000 Series Processors", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "EmbeddedPI-FP5_1.2.0.A"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 Embedded R2000 Series Processors", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "EmbeddedR2KPI-FP5_1.0.0.2"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 Embedded V1000 Series Processors", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "EmbeddedPI-FP5_1.2.0.A"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 Embedded V2000 Series Processors", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "EmbeddedPI-FP6_1.0.0.6"}]}, {"defaultStatus": "affected", "product": "AMD Ryzen\u2122 Embedded V3000 Series", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "EmbeddedPI-FP7r2_1000"}]}, {"defaultStatus": "affected", "product": "AMD Radeon\u2122 RX 6000 Series Graphics Products", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: Adrenalin Edition 23.12.1 (23.30.13.01)"}]}, {"defaultStatus": "affected", "product": "AMD Radeon\u2122 PRO W6000 Series Graphics Products", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "AMD Software: PRO Edition 23.Q4 (23.30.13.03)"}]}, {"defaultStatus": "affected", "product": "AMD Radeon\u2122 PRO V620 Graphics Products", "vendor": "AMD", "versions": [{"status": "unaffected", "version": "Contact your AMD Customer Engineering representative"}]}], "datePublic": "2025-09-06T15:42:00.000Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Failure to validate the address and size in TEE (Trusted Execution Environment) may allow a malicious x86 attacker to send malformed messages to the graphics mailbox resulting in an overlap of a TMR (Trusted Memory Region) that was previously allocated by the ASP bootloader leading to a potential loss of integrity.<br>"}], "value": "Failure to validate the address and size in TEE (Trusted Execution Environment) may allow a malicious x86 attacker to send malformed messages to the graphics mailbox resulting in an overlap of a TMR (Trusted Memory Region) that was previously allocated by the ASP bootloader leading to a potential loss of integrity."}], "metrics": [{"cvssV3_1": {"attackComplexity": "HIGH", "attackVector": "LOCAL", "availabilityImpact": "NONE", "baseScore": 3, "baseSeverity": "LOW", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:L/I:L/A:N", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-190", "description": "CWE-190 Integer Overflow or Wraparound", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "b58fc414-a1e4-4f92-9d70-1add41838648", "shortName": "AMD", "dateUpdated": "2025-09-06T16:03:55.584Z"}, "references": [{"url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4012.html"}, {"url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6018.html"}, {"url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-5007.html"}], "source": {"discovery": "UNKNOWN"}, "x_generator": {"engine": "AMD PSIRT Automation 1.0"}}}}