CVE-2021-26343

Name of the Vulnerable Software and Affected Versions AMD BIOS (affected versions not specified)

Description The issue is related to insufficient validation in ASP BIOS and DRTM commands, which may allow malicious supervisor x86 software to disclose the contents of sensitive memory, resulting in information disclosure. It is also associated with a vulnerability in the implementation of AMD Secure Processor (ASP) technology in the BIOS firmware of AMD processors, related to inadequate protection of service data. This could allow a remote attacker to gain unauthorized access to protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.