ryzen threadripper pro 3995wx firmware · threatengine.sh

Home/Product/amd ryzen threadripper pro 3995wx firmware

Product

amd ryzen threadripper pro 3995wx firmware

37 known vulnerabilities across versions

Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.

Sort Min CVSS Published since

< chagallwspi-swrx8_1.0.0.5

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM a

Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary

Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary c

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM a

< chagallwspi-swrx8_1.0.0.5

Improper clearing of sensitive data in the ASP Bootloader may expose secret keys to a privileged attacker accessing ASP SRAM, pote

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection a

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensiti

A compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may result in exposure of ASP memo

A TOCTOU in ASP bootloader may allow an attacker to tamper with the SPI ROM following data read to memory potentially resulting in

Insufficient bounds checking in ASP may allow an attacker to issue a system call from a compromised ABL which may cause arbitrary

< castlepeakwspi-swrx8_1.0.0.9

Insufficient control flow management in AmdCpmGpioInitSmm may allow a privileged attacker to tamper with the SMM handler potential

< castlepeakwspi-swrx8_1.0.0.9

Insufficient control flow management in AmdCpmOemSmm may allow a privileged attacker to tamper with the SMM handler potentially le

Failure to validate the communication buffer and communication service in the BIOS may allow an attacker to tamper with the buffer

IBPB may not prevent return branch predictions from being specified by pre-IBPB branch targets leading to a potential information

Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacke

Improper parameters handling in the AMD Secure Processor (ASP) kernel may allow a privileged attacker to elevate their privileges

Improper parameters handling in AMD Secure Processor (ASP) drivers may allow a privileged attacker to elevate their privileges pot

Execution unit scheduler contention may lead to a side channel vulnerability found on AMD CPU microarchitectures codenamed “Zen

Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information

Mis-trained branch predictions for return instructions may allow arbitrary speculative code execution under certain microarchitect

A potential vulnerability in some AMD processors using frequency scaling may allow an authenticated attacker to execute a timing a

A malicious or compromised UApp or ABL may be used by an attacker to issue a malformed system call to the Stage 2 Bootloader poten

Insufficient check of the process type in Trusted OS (TOS) may allow an attacker with privileges to enable a lesser privileged pro

Failure to verify the protocol in SMM may allow an attacker to control the protocol and modify SPI flash resulting in a potential

An attacker, who gained elevated privileges via some other vulnerability, may be able to read data from Boot ROM resulting in a lo

Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA (Direct Memory Access) read/write from/to

< chagallwspi-swrx8_1.0.0.2

Improper validation of the BIOS directory may allow for searches to read beyond the directory table copy in RAM, exposing out of b

< chagallwspi-swrx8_1.0.0.2

Insufficient bound checks in the System Management Unit (SMU) may result in access to an invalid address space that could result i

< chagallwspi-swrx8_1.0.0.2

Insufficient checks in System Management Unit (SMU) FeatureConfig may result in reenabling features potentially resulting in denia

< chagallwspi-swrx8_1.0.0.2

Insufficient General Purpose IO (GPIO) bounds check in System Management Unit (SMU) may result in access/updates from/to invalid a

< chagallwspi-swrx8_1.0.0.2

Insufficient bound checks in the System Management Unit (SMU) may result in a system voltage malfunction that could result in deni

A bug in AMD CPU’s core logic may allow for an attacker, using specific code from an unprivileged VM, to trigger a CPU core hang

When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lowe

Insufficient DRAM address validation in System Management Unit (SMU) may result in a DMA read from invalid DRAM address to SRAM re

Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU ha

Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities

Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs

Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures

Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1

About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service

threatengine.sh · Open-source threat intelligence platform · 100+ authoritative sources · Every fact traces to its origin