CVE-2023-20578

< naplespi_1.0.0.k

A TOCTOU (Time-Of-Check-Time-Of-Use) in SMM may allow an attacker with ring0 privileges and access to the BIOS menu or UEFI shell

7.5HIGH

CVE-2021-26344

all versions

An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker with access the abil

7.2HIGH

CVE-2023-20592

all versions

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affe

6.5MEDIUM

CVE-2023-20526

< naplespi_1.0.0.h

Insufficient input validation in the ASP Bootloader may enable a privileged attacker with physical access to expose the contents o

1.9LOW

CVE-2023-20521

< naplespi_1.0.0.h

TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM records after memory content verifi

3.3LOW

CVE-2021-46774

< naplespi_1.0.0.k

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM a

6.7MEDIUM

CVE-2021-26371

< naplespi_1.0.0.h

A compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may result in exposure of ASP memo

5.5MEDIUM

CVE-2021-26356

< naplespi_1.0.0.h

A TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read to memory potentially resulting in

7.4HIGH

CVE-2023-20527

< naplespi_1.0.0.g

Improper syscall input validation in the ASP Bootloader may allow a privileged attacker to read memory out-of-bounds, potentially

6.5MEDIUM

CVE-2021-26403

< naplespi_1.0.0.e

Insufficient checks in SEV may lead to a malicious hypervisor disclosing the launch secret potentially resulting in compromise of

6.5MEDIUM

CVE-2021-26398

< naplespi_1.0.0.h

Insufficient input validation in SYS_KEY_DERIVE system call in a compromised user application or ABL may allow an attacker to corr

7.8HIGH

CVE-2022-23824

all versions

IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information

5.5MEDIUM

CVE-2021-46778

all versions

Execution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microarchitectures codenamed “Zen

5.6MEDIUM

CVE-2022-23825

all versions

Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information

6.5MEDIUM

CVE-2022-29900

all versions

Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitect

6.5MEDIUM

CVE-2022-23823

all versions

A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing a

6.5MEDIUM

CVE-2021-46744

all versions

An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring c

6.5MEDIUM

CVE-2021-26342

< naplespi-sp3_1.0.0.h

In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) following a particular sequence of operations t

3.3LOW

CVE-2021-26408

< naplespi-sp3_1.0.0.g

Insufficient validation of elliptic curve points in SEV-legacy firmware may compromise SEV-legacy guest migration potentially resu

7.1HIGH

CVE-2020-12966

all versions

AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted Virtualization with Encrypted State

5.5MEDIUM

CVE-2021-26340

all versions

A malicious hypervisor in conjunction with an unprivileged attacker process inside an SEV/SEV-ES guest VM may fail to flush the Tr

8.4HIGH

CVE-2021-26335

< naplespi-sp3_1.0.0.g

Improper input and range checking in the AMD Secure Processor (ASP) boot loader image header may allow an attacker to use attacker

7.8HIGH

CVE-2021-26331

< naplespi-sp3_1.0.0.g

AMD System Management Unit (SMU) contains a potential issue where a malicious user may be able to manipulate mailbox entries leadi

7.8HIGH

CVE-2021-26330

< naplespi-sp3_1.0.0.g

AMD System Management Unit (SMU) may experience a heap-based overflow which may result in a loss of resources.

5.5MEDIUM

CVE-2020-12954

< naplespi-sp3_1.0.0.g

A side effect of an integrated chipset option may be able to be used by an attacker to bypass SPI ROM protections, allowing unauth

5.5MEDIUM

CVE-2020-12951

< naplespi-sp3_1.0.0.g

Race condition in ASP firmware could allow less privileged x86 code to perform ASP SMM (System Management Mode) operations.

7.0HIGH

CVE-2020-12988

< naplespi-sp3_1.0.0.g

A potential denial of service (DoS) vulnerability exists in the integrated chipset that may allow a malicious attacker to hang the

7.5HIGH