Security Advisory

CVE-2021-46772

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-08-13 16:50:54

Last updated 2024-11-05 21:18:50

Assigner AMD

State PUBLISHED

Description

Insufficient input validation in the ABL may allow a privileged attacker with access to the BIOS menu or UEFI shell to tamper with the structure headers in SPI ROM causing an out of bounds memory read and write, potentially resulting in memory corruption or denial of service.

← Browse all CVEs View on cve.org ↗