CVE-2021-26333

CVE-2021-26333: AMD Chipset Driver Information Disclosure Vulnerability

Vendor Amd

Product PSP Driver

Weakness CWE-200 · Info exposure

Published September 21, 2021

Last update May 28, 2026

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

An information disclosure vulnerability exists in AMD Platform Security Processor (PSP) chipset driver. The discretionary access control list (DACL) may allow low privileged users to open a handle and send requests to the driver resulting in a potential data leak from uninitialized physical pages.

Key dates

02Disclosure timeline

September 21, 2021 CVE published

May 28, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-26333 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/200.html

Related vulnerabilities

04Related CVE

CVE-2025-9461 diyhi bbs File Compression FilePackageManageAction.java information disclosure CVE-2020-12518 Phoenix Contact PLCnext Control Devices versions before 2021.0 LTS: An attacker can use the knowledge gained by reading the insufficiently protected sensitive information to plan further attacks. CVE-2024-21501 CVE-2024-2080 LiquidPoll – Polls, Surveys, NPS and Feedback Reviews <= 3.3.76 - Information Exposure CVE-2022-0516