CVE-2021-26402
Summary
| CVE | CVE-2021-26402 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-01-11 08:15:00 UTC |
| Updated | 2023-11-07 03:31:00 UTC |
| Description | Insufficient bounds checking in ASP (AMD Secure Processor) firmware while handling BIOS mailbox commands, may allow an attacker to write partially-controlled data out-of-bounds to SMM or SEV-ES regions which may lead to a potential loss of integrity and availability. |
Risk And Classification
Problem Types: CWE-787
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Amd | Epyc 7002 | - | All | All | All |
| Operating System | Amd | Epyc 7002 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7003 | - | All | All | All |
| Operating System | Amd | Epyc 7003 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7232p | - | All | All | All |
| Operating System | Amd | Epyc 7232p Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7252 | - | All | All | All |
| Operating System | Amd | Epyc 7252 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7262 | - | All | All | All |
| Operating System | Amd | Epyc 7262 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7272 | - | All | All | All |
| Operating System | Amd | Epyc 7272 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7282 | - | All | All | All |
| Operating System | Amd | Epyc 7282 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 72f3 | - | All | All | All |
| Operating System | Amd | Epyc 72f3 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7302 | - | All | All | All |
| Hardware | Amd | Epyc 7302p | - | All | All | All |
| Operating System | Amd | Epyc 7302p Firmware | All | All | All | All |
| Operating System | Amd | Epyc 7302 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7313 | - | All | All | All |
| Hardware | Amd | Epyc 7313p | - | All | All | All |
| Operating System | Amd | Epyc 7313p Firmware | All | All | All | All |
| Operating System | Amd | Epyc 7313 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7343 | - | All | All | All |
| Operating System | Amd | Epyc 7343 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7352 | - | All | All | All |
| Operating System | Amd | Epyc 7352 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7373x | - | All | All | All |
| Operating System | Amd | Epyc 7373x Firmware | All | All | All | All |
| Hardware | Amd | Epyc 73f3 | - | All | All | All |
| Operating System | Amd | Epyc 73f3 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7402 | - | All | All | All |
| Hardware | Amd | Epyc 7402p | - | All | All | All |
| Operating System | Amd | Epyc 7402p Firmware | All | All | All | All |
| Operating System | Amd | Epyc 7402 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7413 | - | All | All | All |
| Operating System | Amd | Epyc 7413 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7443 | - | All | All | All |
| Hardware | Amd | Epyc 7443p | - | All | All | All |
| Operating System | Amd | Epyc 7443p Firmware | All | All | All | All |
| Operating System | Amd | Epyc 7443 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7452 | - | All | All | All |
| Operating System | Amd | Epyc 7452 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7453 | - | All | All | All |
| Operating System | Amd | Epyc 7453 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 74f3 | - | All | All | All |
| Operating System | Amd | Epyc 74f3 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7502 | - | All | All | All |
| Hardware | Amd | Epyc 7502p | - | All | All | All |
| Operating System | Amd | Epyc 7502p Firmware | All | All | All | All |
| Operating System | Amd | Epyc 7502 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7513 | - | All | All | All |
| Operating System | Amd | Epyc 7513 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7532 | - | All | All | All |
| Operating System | Amd | Epyc 7532 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7542 | - | All | All | All |
| Operating System | Amd | Epyc 7542 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7543 | - | All | All | All |
| Hardware | Amd | Epyc 7543p | - | All | All | All |
| Operating System | Amd | Epyc 7543p Firmware | All | All | All | All |
| Operating System | Amd | Epyc 7543 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7552 | - | All | All | All |
| Operating System | Amd | Epyc 7552 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7573x | - | All | All | All |
| Operating System | Amd | Epyc 7573x Firmware | All | All | All | All |
| Hardware | Amd | Epyc 75f3 | - | All | All | All |
| Operating System | Amd | Epyc 75f3 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7642 | - | All | All | All |
| Operating System | Amd | Epyc 7642 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7643 | - | All | All | All |
| Operating System | Amd | Epyc 7643 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7662 | - | All | All | All |
| Operating System | Amd | Epyc 7662 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7663 | - | All | All | All |
| Operating System | Amd | Epyc 7663 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7702 | - | All | All | All |
| Hardware | Amd | Epyc 7702p | - | All | All | All |
| Operating System | Amd | Epyc 7702p Firmware | All | All | All | All |
| Operating System | Amd | Epyc 7702 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7713 | - | All | All | All |
| Hardware | Amd | Epyc 7713p | - | All | All | All |
| Operating System | Amd | Epyc 7713p Firmware | All | All | All | All |
| Operating System | Amd | Epyc 7713 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7742 | - | All | All | All |
| Operating System | Amd | Epyc 7742 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7743 | - | All | All | All |
| Operating System | Amd | Epyc 7743 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7763 | - | All | All | All |
| Operating System | Amd | Epyc 7763 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7773x | - | All | All | All |
| Operating System | Amd | Epyc 7773x Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7f32 | - | All | All | All |
| Operating System | Amd | Epyc 7f32 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7f52 | - | All | All | All |
| Operating System | Amd | Epyc 7f52 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7f72 | - | All | All | All |
| Operating System | Amd | Epyc 7f72 Firmware | All | All | All | All |
| Hardware | Amd | Epyc 7h12 | - | All | All | All |
| Operating System | Amd | Epyc 7h12 Firmware | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1032 | MISC | www.amd.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.