CVE-2021-26410 LOW

CVE-2021-26410

Weakness CWE-822
Published February 10, 2026
Last update February 12, 2026

CVSS base score

1.8/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Improper syscall input validation in ASP (AMD Secure Processor) may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential information disclosure.

Key dates

02Disclosure timeline

February 10, 2026 CVE published
February 12, 2026 Record updated