This page lists publicly disclosed CVE vulnerabilities affecting amd ryzen_threadripper_1900x_firmware (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2021-26388 | Improper validation of the BIOS directory may allow for searches to read beyond the directory table copy in RAM, exposing out of bounds memory contents, resulting in a potential denial of service. | [email protected] | 5.5 | 0.04% | 2022-05-11 | 2024-11-21 |
| CVE-2021-26378 | Insufficient bound checks in the System Management Unit (SMU) may result in access to an invalid address space that could result in denial of service. | [email protected] | 5.5 | 0.04% | 2022-05-11 | 2024-11-21 |
| CVE-2021-26376 | Insufficient checks in System Management Unit (SMU) FeatureConfig may result in reenabling features potentially resulting in denial of resources and/or denial of service. | [email protected] | 5.5 | 0.04% | 2022-05-11 | 2024-11-21 |
| CVE-2021-26375 | Insufficient General Purpose IO (GPIO) bounds check in System Management Unit (SMU) may result in access/updates from/to invalid address space that could result in denial of service. | [email protected] | 5.5 | 0.08% | 2022-05-11 | 2024-11-21 |
| CVE-2021-26373 | Insufficient bound checks in the System Management Unit (SMU) may result in a system voltage malfunction that could result in denial of resources and/or possibly denial of service. | [email protected] | 5.5 | 0.04% | 2022-05-11 | 2024-11-21 |
| CVE-2020-12965 | When combined with specific software sequences, AMD CPUs may transiently execute non-canonical loads and store using only the lower 48 address bits potentially resulting in data leakage. | [email protected] | 7.5 | 0.38% | 2022-02-04 | 2024-11-21 |
| CVE-2021-26336 | Insufficient bounds checking in System Management Unit (SMU) may cause invalid memory accesses/updates that could result in SMU hang and subsequent failure to service any further requests from other components. | [email protected] | 5.5 | 0.13% | 2021-11-16 | 2024-11-21 |