CVE-2021-26407

Name of the Vulnerable Software and Affected Versions AMD Secure Processor (ASP) (affected versions not specified) AMD System Management Unit (SMU) (affected versions not specified) AMD Secure Encrypted Virtualization (SEV) (affected versions not specified)

Description The issue is related to errors in initialization, which may lead to information disclosure. A collision of Initialization Vectors (IVs) with the same key could potentially result in the disclosure of protected information.

Recommendations For AMD Secure Processor (ASP), consider implementing proper initialization procedures to prevent errors. For AMD System Management Unit (SMU), ensure that all initialization processes are thoroughly reviewed and validated to prevent potential information disclosure. For AMD Secure Encrypted Virtualization (SEV), as a temporary workaround, consider restricting access to sensitive information until a proper fix is applied. At the moment, there is no information about a newer version that contains a fix for this vulnerability.