CVE-2021-46771 - AskarLabs CVE Database

CVE-2021-46771

Vendor Amd

Product 3rd Gen AMD EPYC™

Weakness CWE-20 · Input validation

Published May 10, 2022

Last update September 17, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

Insufficient validation of addresses in AMD Secure Processor (ASP) firmware system call may potentially lead to arbitrary code execution by a compromised user application.

Key dates

02Disclosure timeline

May 10, 2022 CVE published

September 17, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2021-46771 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

04Related CVE

CVE-2024-49057 Microsoft Defender for Endpoint on Android Spoofing Vulnerability CVE-2023-45161 1E-Exchange-URLResponseTime instruction before v20.1 allows arbitrary code execution CVE-2024-32653 Insufficient input filtering of "package name" allows command execution in the device with shell privileges CVE-2021-23279 Arbitrary File delete CVE-2020-12033