Epyc 7601 Firmware
CVE-2021-26312
MEDIUM
Severity by source
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Lifecycle Timeline
1DescriptionNVD
Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity.
AnalysisAI
Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential. Rated medium severity (CVSS 5.5), this vulnerability is low attack complexity. No vendor patch available.
Technical ContextAI
This vulnerability is classified under CWE-665. Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity. Affected products include: Amd Epyc 7601 Firmware, Amd Epyc 7551P Firmware, Amd Epyc 7551 Firmware, Amd Epyc 7501 Firmware, Amd Epyc 7451 Firmware.
RemediationAI
No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
More in Epyc 7601 Firmware
View allImproper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing a stack-b
A malicious hypervisor in conjunction with an unprivileged attacker process inside an SEV/SEV-ES guest VM may fail to fl
Improper input and range checking in the AMD Secure Processor (ASP) boot loader image header may allow an attacker to us
AMD System Management Unit (SMU) contains a potential issue where a malicious user may be able to manipulate mailbox ent
Persistent platform private key may not be protected with a random IV leading to a potential “two time pad attack”. Rate
Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervis
A potential power side-channel vulnerability in some AMD processors may allow an authenticated attacker to use the power
Improper syscall input validation in the ASP Bootloader may allow a privileged attacker to read memory out-of-bounds, po
Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to in
Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain micr
A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute
TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM records after memory cont
Same weakness CWE-665 – Improper Initialization
View allSame technique Information Disclosure
View allShare
External POC / Exploit Code
Leaving vuln.today