Home
HIGH: 7.1 CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:NDefault status
affected
PicassoPI-FP5 1.0.0.E
unaffected
Default status
affected
CastlePeakWSPI-sWRX8 1.0.0.9
unaffected
ChagallWSPI-sWRX8 1.0.0.2
unaffected
Default status
affected
ComboAM4v2 PI 1.2.0.6
unaffected
Default status
affected
ChagallWSPI-sWRX8 1.0.0.1
unaffected
Default status
affected
RenoirPI-FP6 1.0.0.8
unaffected
Default status
affected
PicassoPI-FP5 1.0.0.E
unaffected
Default status
affected
CezannePI-FP6 1.0.0.9
unaffected
Default status
affected
ComboAM4PI 1.0.0.9/ComboAM4 V2 PI 1.2.0.8
unaffected
Default status
affected
ComboAM4v2 PI 1.2.0.8
unaffected
Default status
affected
CezannePI-FP6 1.0.0.9
unaffected
Default status
affected
ComboAM4v2 PI 1.2.0.6
unaffected
Default status
affected
ComboAM4 V2 PI 1.2.0.8
unaffected
Default status
affected
EmbeddedPI-FP5_1.2.0.A
unaffected
Default status
affected
EmbeddedPI-FP5_1002
unaffected
Default status
affected
EmbAM4PI 1.0.0.2
unaffected
Default status
affected
EmbeddedPI-FP5_1.2.0.A
unaffected
Default status
affected
EmbeddedPI-FP5_1.2.0.A
unaffected
Default status
affected
EmbeddedPI-FP6_1.0.0.6
unaffected
Default status
affected
EmbeddedPI-FP7r2_0080
unaffected
Default status
affected
AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
unaffected
Default status
affected
AMD Software: PRO Edition 25.Q3.1 (25.10.32)
unaffected
Default status
affected
AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
unaffected
Default status
affected
AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
unaffected
Default status
affected
AMD Software: PRO Edition 25.Q3.1 (25.10.32)
unaffected
Default status
affected
AMD Software: PRO Edition 25.Q3.1 (25.10.32)
unaffected
Default status
affected
Contact your AMD Customer Engineering representative
unaffected
Default status
affected
Contact your AMD Customer Engineering representative
unaffected
Description
Insufficient granularity of access control in ASP (AMD Secure Processor) may allow an attacker with an untrusted user space application to map sensitive SMN (System Management Network) apertures leading to a potential escalation of privileges.
Problem types
CWE-1220 Insufficient Granularity of Access Control
Product status
PicassoPI-FP5 1.0.0.E
CastlePeakWSPI-sWRX8 1.0.0.9
ChagallWSPI-sWRX8 1.0.0.2
ComboAM4v2 PI 1.2.0.6
ChagallWSPI-sWRX8 1.0.0.1
RenoirPI-FP6 1.0.0.8
PicassoPI-FP5 1.0.0.E
CezannePI-FP6 1.0.0.9
ComboAM4PI 1.0.0.9/ComboAM4 V2 PI 1.2.0.8
ComboAM4v2 PI 1.2.0.8
CezannePI-FP6 1.0.0.9
ComboAM4v2 PI 1.2.0.6
ComboAM4 V2 PI 1.2.0.8
EmbeddedPI-FP5_1.2.0.A
EmbeddedPI-FP5_1002
EmbAM4PI 1.0.0.2
EmbeddedPI-FP5_1.2.0.A
EmbeddedPI-FP5_1.2.0.A
EmbeddedPI-FP6_1.0.0.6
EmbeddedPI-FP7r2_0080
AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
AMD Software: PRO Edition 25.Q3.1 (25.10.32)
AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
AMD Software: Adrenalin Edition 25.11.1 (25.10.33.03)
AMD Software: PRO Edition 25.Q3.1 (25.10.32)
AMD Software: PRO Edition 25.Q3.1 (25.10.32)
Contact your AMD Customer Engineering representative
Contact your AMD Customer Engineering representative
References
www.amd.com/...es/product-security/bulletin/AMD-SB-4017.html
www.amd.com/...es/product-security/bulletin/AMD-SB-6027.html