PT-2018-1086 · Amd · Ryzen Mobile+2

Cfir Cohen

Publicado

2018-03-12

Atualizado

2019-10-03

CVE-2018-8931

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips (affected versions not specified)

Description The issue is related to insufficient access control for the Secure Processor in AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips. This allows an attacker with administrative privileges and access to the targeted computer to write to the protected area of the processor (VTL-1 memory) by writing to the AMD Secure Processor coprocessor registers.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Incorrect Permission

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-264CWE-732

Identificadores relacionados

BDU:2018-00467

CVE-2018-8931

Produtos afetados

Amd Ryzen

Ryzen Mobile

Ryzen Pro

PT-2018-1086 · Amd · Ryzen Mobile+2

CVE-2018-8931

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8