Home
MEDIUM: 5.4 CVSS:4.0/AV:P/AC:H/AT:P/PR:H/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:NDefault status
affected
PhoenixPI-FP8-FP7_1.2.0.0f
unaffected
Default status
affected
DragonRangeFL1PI 1.0.0.3k
unaffected
Default status
affected
ComboAM5PI 1.0.0.d
unaffected
Default status
affected
FireRangeFL1PI 1.0.0.0d
unaffected
Default status
affected
StrixKrackanPI-FP8_1.1.0.0e
unaffected
Default status
affected
StormPeakPI-SP6 1.0.0.1m
unaffected
StormPeakPI-SP6_1.1.0.0k
unaffected
Default status
affected
ComboAM5PI 1.1.0.3f
unaffected
Default status
affected
ComboAM5PI_1.2.0.3i
unaffected
Default status
affected
ComboAM5PI 1.1.0.3f
unaffected
Default status
affected
ComboAM5PI_1.2.0.3i
unaffected
Default status
affected
ComboAM5PI_1.2.0.3i
unaffected
Default status
affected
PhoenixPI-FP8-FP7_1.2.0.0f
unaffected
Default status
affected
StrixHaloPI-FP11_1.0.0.2a
unaffected
Default status
affected
PhoenixPI-FP8-FP7_1.2.0.0f
unaffected
Default status
affected
PhoenixPI-FP8-FP7_1.2.0.0f
unaffected
Default status
affected
StrixKrackanPI-FP8_1.1.0.2d
unaffected
Default status
affected
PhoenixPI-FP8-FP7_1.2.0.0f
unaffected
Default status
affected
ShimadaPeakPI-SP6 1.0.0.1c
unaffected
Default status
affected
ShimadaPeakPI-SP6 1.0.0.1c
unaffected
Default status
affected
ShimadaPeakPI-SP6 1.0.0.1c
unaffected
Default status
affected
ShimadaPeakPI-SP6 1.0.0.1c
unaffected
Default status
affected
ComboAM5PI_1.3.0.0
unaffected
Default status
affected
ComboAM5PI_1.3.0.0
unaffected
Default status
affected
ComboAM5PI_1.3.0.0
unaffected
Default status
affected
EmbeddedAM5PI 1.0.0.5
unaffected
Default status
affected
EmbeddedPhoenixPI-FP7r2_1.0.0.4
unaffected
Default status
affected
EmbeddedAM5PI 1.0.0.5
unaffected
Default status
affected
ComboAM5PI 1.0.0.d / ComboAM5PI 1.1.0.3f / ComboAM5PI_1.2.0.3i
unaffected
Default status
affected
ComboAM5PI_1.2.0.3i
unaffected
Description
A System Management Mode (SMM) handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity and present preconditions, trigger execution of attacker-controlled code in SMM, potentially compromising the system’s confidentiality, integrity, and availability.
Problem types
CWE-1072 Call to Function Pointer from Untrusted Control Sphere in SMM
Product status
PhoenixPI-FP8-FP7_1.2.0.0f
DragonRangeFL1PI 1.0.0.3k
ComboAM5PI 1.0.0.d
FireRangeFL1PI 1.0.0.0d
StrixKrackanPI-FP8_1.1.0.0e
StormPeakPI-SP6 1.0.0.1m
StormPeakPI-SP6_1.1.0.0k
ComboAM5PI 1.1.0.3f
ComboAM5PI_1.2.0.3i
ComboAM5PI 1.1.0.3f
ComboAM5PI_1.2.0.3i
ComboAM5PI_1.2.0.3i
PhoenixPI-FP8-FP7_1.2.0.0f
StrixHaloPI-FP11_1.0.0.2a
PhoenixPI-FP8-FP7_1.2.0.0f
PhoenixPI-FP8-FP7_1.2.0.0f
StrixKrackanPI-FP8_1.1.0.2d
PhoenixPI-FP8-FP7_1.2.0.0f
ShimadaPeakPI-SP6 1.0.0.1c
ShimadaPeakPI-SP6 1.0.0.1c
ShimadaPeakPI-SP6 1.0.0.1c
ShimadaPeakPI-SP6 1.0.0.1c
ComboAM5PI_1.3.0.0
ComboAM5PI_1.3.0.0
ComboAM5PI_1.3.0.0
EmbeddedAM5PI 1.0.0.5
EmbeddedPhoenixPI-FP7r2_1.0.0.4
EmbeddedAM5PI 1.0.0.5
ComboAM5PI 1.0.0.d / ComboAM5PI 1.1.0.3f / ComboAM5PI_1.2.0.3i
ComboAM5PI_1.2.0.3i
References
www.amd.com/...es/product-security/bulletin/AMD-SB-3030.html
www.amd.com/...es/product-security/bulletin/AMD-SB-4017.html