CVE-2018-8930

Name of the Vulnerable Software and Affected Versions AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips (affected versions not specified)

Description The issue is related to the insufficient enforcement of Hardware Validated Boot in AMD processor chips. This allows an attacker with administrative privileges and access to the targeted computer to bypass code verification during the secure boot process. The attacker can then inject malicious code into the computer's BIOS by modifying the flash memory content.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.