PT-2026-42015 · Amd · Amd Epyc™ 4004+16
Published
2026-05-19
·
Updated
2026-05-20
·
CVE-2024-36343
CVSS v4.0
4.6
Medium
| Vector | AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N |
Name of the Vulnerable Software and Affected Versions
The product name cannot be determined (affected versions not specified)
Description
Improper input validation in the System Management Mode (SMM) communications buffer allows a privileged attacker to perform an out-of-bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region. This could lead to a loss of confidentiality or integrity.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Amd Epyc™ 4004
Amd Epyc™ 4005
Amd Ryzen™ 6000 Series Processor With Radeon™ Graphics
Amd Ryzen™ 7000 Series Desktop Processors
Amd Ryzen 7040 Series Processors With Radeon Graphics
Amd Ryzen™ 7045 Series Mobile Processors With Radeon™ Graphics
Amd Ryzen™ 8000 Series Desktop Processors
Amd Ryzen™ 9000 Series Desktop Processors
Amd Ryzen™ 9000Hx Series Mobile Processors
Amd Ryzen™ Ai Max 300 Series Processors
Amd Ryzen™ Ai Max
Amd Ryzen™ Embedded 7000 Series Processors
Amd Ryzen™ Embedded 8000 Series Processors
Amd Ryzen™ Embedded 9000 Series Processors
Amd Ryzen™ Embedded V3000 Series Processors
Amd Ryzen™ Threadripper™ 7000 Processors
Amd Ryzen™ Threadripper™ Pro 7000 Wx-Series Processors