CVE-2021-46747 HIGH

CVE-2021-46747

Weakness CWE-1220
Published June 1, 2026
Last update June 2, 2026

CVSS base score

7.1/10
Attack vector Local
Attack complexity High
Privileges required High
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

Insufficient granularity of access control in ASP (AMD Secure Processor) may allow an attacker with an untrusted user space application to map sensitive SMN (System Management Network) apertures leading to a potential escalation of privileges.

Key dates

02Disclosure timeline

June 1, 2026 CVE published
June 2, 2026 Record updated