Memory Access Vulnerability in AMD Trusted OS Drivers
CVE-2021-26380

1.8LOW

Key Information:

Vendor: Amd
Status: Amd Ryzen™ 5000 Series Desktop Processors With Radeon™ Graphics; Amd Ryzen™ Threadripper™ Pro 5000 Wx-series Processors; Amd Ryzen™ 7030 Series Mobile Processors With Radeon™ Graphics; Amd Athlon™ 3000 Series Mobile Processors With Radeon™ Graphics
Vendor: CVE Published:; 15 May 2026

What is CVE-2021-26380?

A vulnerability exists in AMD's Trusted OS drivers that allows a compromised driver to issue malformed calls. This could potentially result in unauthorized memory access outside the intended range, thereby risking the integrity of the system.

Affected Version(s)

AMD Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics ComboAM4v2 PI 1.2.0.8

AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics PicassoPI-FP5 1.0.0.E

AMD Radeon™ Instinct™ MI25 Contact your AMD Customer Engineering representative

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V4

Score:

1.8

Severity:

LOW

Confidentiality:

Low

Integrity:

Low

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 15, 2026
Vulnerability Reserved
Jan 29, 2021

CVE-2021-26380 Data

JSON

Amd

What is CVE-2021-26380?

Affected Version(s)

References

CVSS V4

Timeline