PT-2021-17005 · Amd · 3Rd Gen Amd Epyc™+16

Cfir Cohen

Published

2021-11-16

Updated

2021-11-19

CVE-2021-26323

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions No specific software or versions are mentioned in the provided descriptions.

Description The issue is related to the failure to validate SEV Commands while SNP is active, which may result in a potential impact to memory integrity.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2021-26323

Affected Products

3Rd Gen Amd Epyc™

Epyc 7232P Firmware

Epyc 72F3 Firmware

Epyc 7313P Firmware

Epyc 7343 Firmware

Epyc 73F3 Firmware

Epyc 7413 Firmware

Epyc 7443P Firmware

Epyc 7453 Firmware

Epyc 74F3 Firmware

Epyc 7513 Firmware

Epyc 7543P Firmware

Epyc 75F3 Firmware

Epyc 7643 Firmware

Epyc 7663 Firmware

Epyc 7713P Firmware

Epyc 7763 Firmware

PT-2021-17005 · Amd · 3Rd Gen Amd Epyc™+16

CVE-2021-26323

Weakness Enumeration

Related Identifiers

Affected Products

References · 4