CVE-2021-26316

Sažetak

Failure to validate the communication buffer and communication service in the BIOS may allow an attacker to tamper with the buffer resulting in potential SMM (System Management Mode) arbitrary code execution.

Reference

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1032
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1032

CVSS

Base:	7.8
Impact:	5.9
Exploitability:	1.8

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	LOW

Impact

Povjerljivost	Cjelovitost	Dostupnost
HIGH	HIGH	HIGH

CVSS vektor

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Zadnje važnije ažuriranje

09-04-2025 - 16:15

Objavljeno

11-01-2023 - 08:15