Security Advisory

CVE-2021-26371

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-09 18:59:16
Last updated 2025-01-28 15:46:02
Assigner AMD
State PUBLISHED

Description

A compromised or malicious ABL or UApp could send a SHA256 system call to the bootloader, which may result in exposure of ASP memory to userspace, potentially leading to information disclosure.