CVE-2021-46767

Description

Insufficient input validation in the ASP may allow an attacker with physical access, unauthorized write access to memory potentially leading to a loss of integrity or denial of service.

CVSS breakdown

CVSS 3.1

Attack Vector

Physical

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

High

Affected products

AMD / 2nd Gen EPYCvarious – various
AMD / 3rd Gen EPYCvarious – various

References

MISChttps://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1032