Arbitrary Memory Overwrite Vulnerability in ABL by AMD
CVE-2021-46775

6.8MEDIUM

Key Information:

Vendor

Amd
Status
2nd Gen Amd Epyc™
3rd Gen Amd Epyc™
Vendor
CVE Published:
9 May 2023

What is CVE-2021-46775?

An improper input validation vulnerability exists in ABL by AMD, allowing an attacker with physical access to perform arbitrary memory overwrites. This can lead to significant risks, including potential data integrity loss and unauthorized code execution, posing threats to system security and stability.

Affected Version(s)

2nd Gen AMD EPYC™ x86 various

3rd Gen AMD EPYC™ x86 various

References

https://www.amd.com/en/corporate/product-security/bulleti...
vendor-advisory

CVSS V3.1

Score:
6.8
Severity:
MEDIUM
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Physical
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
The Cyber Security Vulnerability Database.