CVE-2021-46749 [High] | Out-of-bounds Read in Ryzen 5300g Firmware

Insufficient bounds checking in ASP (AMD Secure Processor) may allow for an out of bounds read in SMI (System Management Interface) mailbox checksum calculation triggering a data abort, resulting in a potential denial of service.

#	Date	Old EPSS score	New EPSS score	Delta (New - Old)
1	2026-05-24	0.16%	0.54%	+0.38%
2	2025-11-21	0.33%	0.16%	-0.18%
3	2025-11-18	—	0.33%	—

Date

Old EPSS score

New EPSS score

Delta (New - Old)

2026-05-24

0.16%

0.54%

+0.38%

2025-11-21

0.33%

0.16%

-0.18%

2025-11-18

—

0.33%

—

Base score	Version	Severity	Vector	Exploitability	Impact	Score source
7.5	3.1	HIGH	`CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H` Click to expand Attack vector (AV:N) Could be attacked over the internet or any normal routed network—not just someone sitting at the machine. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:N) No account or special rights needed—anonymous or random user is enough. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:N) Doesn’t really leak secrets in a meaningful way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:H) Could take the service down hard or make it unusable for people who depend on it.	3.9	3.6	[email protected]
7.5	3.1	HIGH	`CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H` Click to expand Attack vector (AV:N) Could be attacked over the internet or any normal routed network—not just someone sitting at the machine. Attack complexity (AC:L) Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup. Privileges required (PR:N) No account or special rights needed—anonymous or random user is enough. User interaction (UI:N) Nobody has to click “OK” or open a trap file; it can work without a victim helping. Scope (S:U) Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems. Confidentiality (C:N) Doesn’t really leak secrets in a meaningful way. Integrity (I:N) Data isn’t meaningfully altered or forged. Availability (A:H) Could take the service down hard or make it unusable for people who depend on it.	3.9	3.6	134c704f-9b21-4f2e-91b3-4a467353bcc0

Base score

Version

Severity

Vector

Exploitability

Impact

Score source

7.5

3.1

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Click to expand

Attack vector (AV:N): Could be attacked over the internet or any normal routed network—not just someone sitting at the machine.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:N): No account or special rights needed—anonymous or random user is enough.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:N): Doesn’t really leak secrets in a meaningful way.
Integrity (I:N): Data isn’t meaningfully altered or forged.
Availability (A:H): Could take the service down hard or make it unusable for people who depend on it.

3.9

3.6

[email protected]

7.5

3.1

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Click to expand

Attack vector (AV:N): Could be attacked over the internet or any normal routed network—not just someone sitting at the machine.
Attack complexity (AC:L): Once they can reach the bug, pulling it off is straightforward—no weird race conditions or rare setup.
Privileges required (PR:N): No account or special rights needed—anonymous or random user is enough.
User interaction (UI:N): Nobody has to click “OK” or open a trap file; it can work without a victim helping.
Scope (S:U): Damage stays in the same “trust bubble” as the broken component—no big spill into unrelated systems.
Confidentiality (C:N): Doesn’t really leak secrets in a meaningful way.
Integrity (I:N): Data isn’t meaningfully altered or forged.
Availability (A:H): Could take the service down hard or make it unusable for people who depend on it.

3.9

3.6

134c704f-9b21-4f2e-91b3-4a467353bcc0

Affected software / configurations for CVE-2021-46749

Vendor	Product	Version	Raw CPE
amd	ryzen_5300g_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5300g_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5300ge_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5300ge_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5500_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5500_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5600_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5600_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5600g_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5600g_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5600ge_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5600ge_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5600x_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5600x_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5700g_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5700g_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5700ge_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5700ge_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5700x_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5700x_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5800_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5800_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5800x3d_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5800x3d_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5800x_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5800x_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5900_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5900_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5900x_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5900x_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5945wx_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5945wx_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5950x_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5950x_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5955wx_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5955wx_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5965wx_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5965wx_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5975wx_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5975wx_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_5995wx_firmware	cezannepi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_5995wx_firmware:cezannepi-fp6_1.0.0.8:::::::*
amd	ryzen_3100_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3100_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3100_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3100_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3100_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3100_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3100_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3100_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3100_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3100_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3300x_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3300x_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3300x_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3300x_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3300x_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3300x_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3300x_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3300x_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3300x_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3300x_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3500_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3500_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3500_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3500_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3500_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3500_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3500_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3500_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3500_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3500_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3500x_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3500x_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3500x_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3500x_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3500x_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3500x_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3500x_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3500x_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3500x_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3500x_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3600_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3600_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3600_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3600_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3600_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3600_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3600_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3600_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3600_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3600_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3600x_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3600x_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3600x_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3600x_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3600x_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3600x_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3600x_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3600x_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3600x_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3600x_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3600xt_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3600xt_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3600xt_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3600xt_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3600xt_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3600xt_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3600xt_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3600xt_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3600xt_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3600xt_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3800x_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3800x_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3800x_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3800x_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3800x_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3800x_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3800x_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3800x_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3800x_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3800x_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3800xt_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3800xt_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3800xt_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3800xt_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3800xt_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3800xt_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3800xt_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3800xt_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3800xt_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3800xt_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3900_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3900_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3900_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3900_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3900_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3900_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3900_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3900_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3900_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3900_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3900x_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3900x_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3900x_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3900x_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3900x_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3900x_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3900x_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3900x_firmware:picassopi-fp5_1.0.0.e:::::::*
amd	ryzen_3900x_firmware	renoirpi-fp6_1.0.0.8	cpe:2.3:o:amd:ryzen_3900x_firmware:renoirpi-fp6_1.0.0.8:::::::*
amd	ryzen_3900xt_firmware	comboam4pi_1.0.0.9	cpe:2.3:o:amd:ryzen_3900xt_firmware:comboam4pi_1.0.0.9:::::::*
amd	ryzen_3900xt_firmware	comboam4v2_pi_1.2.0.5	cpe:2.3:o:amd:ryzen_3900xt_firmware:comboam4v2_pi_1.2.0.5:::::::*
amd	ryzen_3900xt_firmware	comboam4v2_pi_1.2.0.8	cpe:2.3:o:amd:ryzen_3900xt_firmware:comboam4v2_pi_1.2.0.8:::::::*
amd	ryzen_3900xt_firmware	picassopi-fp5_1.0.0.e	cpe:2.3:o:amd:ryzen_3900xt_firmware:picassopi-fp5_1.0.0.e:::::::*

References for CVE-2021-46749

URL	Tags
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4001	Vendor Advisory

URL

CVE-2021-46749

Exploit prediction scoring system (EPSS) score for CVE-2021-46749

Common vulnerability scoring system (CVSS) metrics for CVE-2021-46749

Weakness enumeration for CVE-2021-46749

Affected software / configurations for CVE-2021-46749

References for CVE-2021-46749