RSS   Vulnerabilities for 'Ryzen firmware'   RSS

2018-03-22
 
CVE-2018-8936

CWE-264
 

 
The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips allow Platform Security Processor (PSP) privilege escalation.

 
 
CVE-2018-8935

CWE-264
 

 
The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in the ASIC, aka CHIMERA-HW.

 
 
CVE-2018-8934

CWE-264
 

 
The Promontory chipset, as used in AMD Ryzen and Ryzen Pro platforms, has a backdoor in firmware, aka CHIMERA-FW.

 
 
CVE-2018-8932

CWE-284
 

 
The AMD Ryzen and Ryzen Pro processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-2, RYZENFALL-3, and RYZENFALL-4.

 
 
CVE-2018-8931

CWE-284
 

 
The AMD Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient access control for the Secure Processor, aka RYZENFALL-1.

 
 
CVE-2018-8930

CWE-20
 

 
The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3.

 

 >>> Vendor: AMD 16 Products
Catalyst driver
16h model 00h processor
16h model 0fh processor
16h model processor firmware
Fx-8120 8-core
Fx-8350 8-core
Athlon ii 640 x4
Fx-8320 8-core
Phenom 9550 4-core
E-350
Ryzen
Fglrx-driver
Ryzen firmware
Ryzen mobile firmware
Ryzen pro firmware
Epyc server firmware


Copyright 2018, cxsecurity.com

 

Back to Top