CVE-2021-26350

CVSS V2 Low 1.9 CVSS V3 Medium 4.7

Description

A TOCTOU race condition in SMU may allow for the caller to obtain and manipulate the address of a message port register which may result in a potential denial of service.

Overview

CVE ID
CVE-2021-26350

Assigner
psirt@amd.com

Vulnerability Status
Analyzed

Published Version
2022-05-11T17:15:08

Last Modified Date
2022-05-23T17:53:26

Weakness Enumerations

CWE	URL
CWE-367	http://cwe.mitre.org/data/definitions/367.html

CPE Configuration (Product)

CPE	Vulnerable	Operator	Version End
		AND
cpe:2.3:o:amd:epyc_7232p_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7232p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7302p_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7302p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7402p_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7402p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7502p_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7502p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7702p_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7702p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7252_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7252:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7262_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7262:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7272_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7272:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7282_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7282:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7302_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7302:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7352_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7352:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7402_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7402:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7452_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7452:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7502_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7502:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7532_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7532:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7542_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7542:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7552_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7552:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7642_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7642:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7662_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7662:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7702_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7702:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7742_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7742:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7f32_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7f32:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7f52_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7f52:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7f72_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7f72:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7f32_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7f32:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7f52_firmware::::::::	1	OR	romepi-sp3_1.0.0.d
cpe:2.3:h:amd:epyc_7f52:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7313p_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7313p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7443p_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7443p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7543p_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7543p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7713p_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7713p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7773x_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7773x:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7763_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7763:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7713_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7713:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7663_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7663:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7643_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7643:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7573x_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7573x:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_75f3_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_75f3:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7543p_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7543p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7513_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7513:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7473x_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7473x:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7453_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7453:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_74f3_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_74f3:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7443p_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7443p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7413_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7413:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_73f3_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_73f3:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7373x_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7373x:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7343_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7343:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_7313p_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_7313p:-:::::::*	0	OR
		AND
cpe:2.3:o:amd:epyc_72f3_firmware::::::::	1	OR	milanpi-sp3_1.0.0.7
cpe:2.3:h:amd:epyc_72f3:-:::::::*	0	OR

CVSS Version 2

Version
2.0

Vector String
AV:L/AC:M/Au:N/C:N/I:N/A:P

Access Vector
LOCAL

Access Compatibility
MEDIUM

Authentication
NONE

Confidentiality Impact
NONE

Integrity Impact
NONE

Availability Impact
PARTIAL

Base Score
1.9

Severity
LOW

Exploitability Score
3.4

Impact Score
2.9

CVSS Version 3

Version
3.1

Vector String
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Attack Vector
LOCAL

Attack Compatibility
HIGH

Privileges Required
LOW

User Interaction
NONE

Scope
UNCHANGED

Confidentiality Impact
NONE

Availability Impact
HIGH

Base Score
4.7

Base Severity
MEDIUM

Exploitability Score
1

Impact Score
3.6

References

Reference URL	Reference Tags
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1028

Sources

Source Name	Source URL
NIST	https://nvd.nist.gov/vuln/detail/CVE-2021-26350
MITRE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26350

History

Created	Old Value	New Value	Data Type	Notes
2022-05-11 18:00:30				Added to TrackCVE