amd epyc_7003_firmware 将资源暴露给错误范围
CVE编号
CVE-2021-26327利用情况
暂无补丁情况
N/A披露时间
2021-11-17漏洞描述
Insufficient validation of guest context in the SNP Firmware could lead to a potential loss of guest confidentiality.解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接 |
|
|---|---|
| https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 |
受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7003_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_72f3_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7313p_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7313_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7343_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_73f3_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7413_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7443p_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7443_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7453_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_74f3_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7513_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7543p_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7543_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_75f3_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7643_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7663_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7713p_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7713_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | epyc_7763_firmware | * | Up to (excluding) milanpi-sp3_1.0.0.4 | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7003 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_72f3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7313 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7313p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7343 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_73f3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7413 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7443 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7443p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7453 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_74f3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7513 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7543 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7543p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_75f3 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7643 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7663 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7713 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7713p | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | epyc_7763 | - | - | |||||
- 攻击路径 本地
- 攻击复杂度 低
- 权限要求 低
- 影响范围 未更改
- 用户交互 无
- 可用性 无
- 保密性 高
- 完整性 无
| CWE-ID | 漏洞类型 |
| CWE-668 | 将资源暴露给错误范围 |
Exp相关链接
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论