CVE-2021-26344

Description

An out of bounds memory write when processing the AMD PSP1 Configuration Block (APCB) could allow an attacker with access the ability to modify the BIOS image, and the ability to sign the resulting image, to potentially modify the APCB block resulting in arbitrary code execution.

CVSS breakdown

CVSS 3.1

Attack Vector

Local

Attack Complexity

High

Privileges Required

High

User Interaction

Required

Scope

Changed

Confidentiality

High

Integrity

High

Availability

High

Affected products

AMD / AMD Athlon™ 3000 Series Desktop Processors with Radeon™ Graphicsvarious – various
AMD / AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphicsvarious – various
AMD / AMD EPYC™ 7001 Series Processorsvarious – various
AMD / AMD EPYC™ 7002 Series ProcessorsRomePI 1.0.0.C – RomePI 1.0.0.C
AMD / AMD EPYC™ 7003 Series ProcessorsMilanPI 1.0.0.5 – MilanPI 1.0.0.5
AMD / AMD EPYC™ Embedded 3000 Series ProcessorsVarious – Various
AMD / AMD EPYC™ Embedded 7002 Series ProcessorsEmbRomePI-SP3 1.0.0.6 – EmbRomePI-SP3 1.0.0.6
AMD / AMD EPYC™ Embedded 7003 Series ProcessorsEmbMilanPI-SP3 1.0.0.2 – EmbMilanPI-SP3 1.0.0.2
AMD / AMD Ryzen™ 3000 Series Desktop Processorsvarious – various
AMD / AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphicsvarious – various
AMD / AMD Ryzen™ 3000 Series Processors with Radeon™ GraphicsCezannePI-FP6 1.0.0.E – CezannePI-FP6 1.0.0.E
AMD / AMD Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphicsvarious – various
AMD / AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphicsvarious – various
AMD / AMD Ryzen™ 5000 Series Desktop ProcessorsComboAM4V2 1.2.0.A – ComboAM4V2 1.2.0.A
AMD / AMD Ryzen™ 5000 Series Desktop Processor with Radeon™ GraphicsComboAM4V2 1.2.0.A – ComboAM4V2 1.2.0.A
AMD / AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsCezannePI-FP6 1.0.0.E – CezannePI-FP6 1.0.0.E
AMD / AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphicsvarious – various
AMD / AMD Ryzen™ 5000 Series Processors with Radeon™ GraphicsCezannePI-FP6 1.0.0.E – CezannePI-FP6 1.0.0.E
AMD / AMD Ryzen™ 6000 Series Processors with Radeon™ GraphicsRembrandtPI-FP7 1.0.0.7 – RembrandtPI-FP7 1.0.0.7
AMD / AMD Ryzen™ 7020 Series Processors with Radeon™ GraphicsMendocinoPI-FT6 1.0.0.3 – MendocinoPI-FT6 1.0.0.3
AMD / AMD Ryzen™ 7035 Series Processors with Radeon™ GraphicsRembrandtPI-FP7 1.0.0.7 – RembrandtPI-FP7 1.0.0.7
AMD / AMD Ryzen™ Embedded 5000 Series Processorsv – v
AMD / AMD Ryzen™ Embedded R1000 Series Processorsv – v
AMD / AMD Ryzen™ Embedded R2000 Series Processorsv – v
AMD / AMD Ryzen™ Embedded V1000 Series Processorsv – v
AMD / AMD Ryzen™ Embedded V2000 Series Processorsv – v
AMD / AMD Ryzen™ Embedded V3000 Series ProcessorsEmbeddedPI-FP7r2 1.0.0.4 – EmbeddedPI-FP7r2 1.0.0.4
AMD / AMD Ryzen™ Threadripper™ 3000 Series Processorsvarious – various
AMD / AMD Ryzen™ Threadripper™ PRO 5000WX ProcessorsChagallWSPI-sWRX8 1.0.0.6 – ChagallWSPI-sWRX8 1.0.0.6

References

MISChttps://www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.html