CVE-2021-26322

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned.

Description The issue concerns a potential "two time pad attack" due to the persistent platform private key not being protected with a random IV. This could lead to security risks, but specific details about affected devices or real-world incidents are not provided.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-320CWE-330

Related Identifiers

CVE-2021-26322

Affected Products

1St Gen Amd Epyc™

2Nd Gen Amd Epyc™

3Rd Gen Amd Epyc™

Epyc 7232P Firmware

Epyc 7251 Firmware

Epyc 7252 Firmware

Epyc 7261 Firmware

Epyc 7262 Firmware

Epyc 7272 Firmware

Epyc 7281 Firmware

Epyc 7282 Firmware

Epyc 72F3 Firmware

Epyc 7301 Firmware

Epyc 7302P Firmware

Epyc 7313P Firmware

Epyc 7343 Firmware

Epyc 7351P Firmware

Epyc 7352 Firmware

Epyc 7371 Firmware

Epyc 73F3 Firmware

Epyc 7401 Firmware

Epyc 7402P Firmware

Epyc 7413 Firmware

Epyc 7443P Firmware

Epyc 7451 Firmware

Epyc 7452 Firmware

Epyc 7453 Firmware

Epyc 74F3 Firmware

Epyc 7501 Firmware

Epyc 7502 Firmware

Epyc 7513 Firmware

Epyc 7532 Firmware

Epyc 7542 Firmware

Epyc 7543P Firmware

Epyc 7551P Firmware

Epyc 7552 Firmware

Epyc 75F3 Firmware

Epyc 7601 Firmware

Epyc 7642 Firmware

Epyc 7643 Firmware

Epyc 7662 Firmware

Epyc 7663 Firmware

Epyc 7702P Firmware

Epyc 7713P Firmware

Epyc 7742 Firmware

Epyc 7763 Firmware

Epyc 7F32 Firmware

Epyc 7F52 Firmware

Epyc 7F72 Firmware

Epyc 7H12 Firmware

CVE-2021-26322

Weakness Enumeration

Related Identifiers

Affected Products

References · 3