CVE-2021-46763

Q: What is the severity of CVE-2021-46763?

CVE-2021-46763 has a CVSS score of 7.5 (HIGH). This vulnerability allows a privileged attacker to write beyond intended memory bounds in AMD's System Management Unit (SMU), potentially compromising system integrity. It affects systems with vulnerable AMD processors, requiring local privileged access for exploitation.

7.5 HIGH

Buffer Overflow

📋 TL;DR

This vulnerability allows a privileged attacker to write beyond intended memory bounds in AMD's System Management Unit (SMU), potentially compromising system integrity. It affects systems with vulnerable AMD processors, requiring local privileged access for exploitation.

💻 Affected Systems

Products:

AMD processors with vulnerable SMU firmware

Versions: Specific versions not publicly detailed in advisory

Operating Systems: All operating systems running on affected AMD hardware

Default Config Vulnerable: ⚠️ Yes

Notes: Requires AMD processors with vulnerable SMU firmware versions; exact models not specified in public advisory.

📦 What is this software?

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise through arbitrary code execution in SMU firmware, potentially bypassing security controls and persisting across reboots.

🟠

Likely Case

System instability, crashes, or limited data corruption due to memory overwrites in shared buffers.

🟢

If Mitigated

Minimal impact if proper access controls prevent unauthorized privileged access to SMU interfaces.

🌐 Internet-Facing: LOW - Requires local privileged access, not directly exploitable over network.

🏢 Internal Only: MEDIUM - Could be exploited by malicious insiders or compromised accounts with local administrative privileges.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: HIGH

Exploitation requires deep knowledge of SMU architecture and privileged system access.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Refer to AMD advisory for specific firmware versions

Vendor Advisory: https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3001

Restart Required: Yes

Instructions:

1. Check AMD advisory for affected processor models. 2. Obtain updated firmware/BIOS from system/motherboard manufacturer. 3. Apply firmware update following manufacturer instructions. 4. Reboot system to activate new firmware.

🔧 Temporary Workarounds

Restrict SMU access

all

Limit privileged access to SMU interfaces through system hardening

System-specific hardening commands not available generically

🧯 If You Can't Patch

Implement strict access controls to prevent unauthorized privileged access
Monitor for unusual system behavior or SMU-related activity

🔍 How to Verify

Check if Vulnerable:

Check system BIOS/firmware version against AMD advisory; use manufacturer-specific tools to query SMU version

Check Version:

Manufacturer-specific (e.g., dmidecode for Linux, systeminfo for Windows)

Verify Fix Applied:

Verify updated firmware version matches patched versions in AMD advisory

📡 Detection & Monitoring

Log Indicators:

Unusual SMU access attempts
System crashes or instability following privileged operations

Network Indicators:

Not applicable - local vulnerability

SIEM Query:

Not applicable - no standard network signatures

📊 Metadata

CVE ID: CVE-2021-46763

CVSS v3 Score: 7.5 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CWE: CWE-787

Published: May 9, 2023

Last Updated: January 28, 2025

🔗 References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3001 Vendor Advisory
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3001 Vendor Advisory

📋 TL;DR

💻 Affected Systems

📦 What is this software?

Epyc 7232p Firmware by Amd

Epyc 7252 Firmware by Amd

Epyc 7262 Firmware by Amd

Epyc 7272 Firmware by Amd

Epyc 7282 Firmware by Amd

Epyc 72f3 Firmware by Amd

Epyc 7302 Firmware by Amd

Epyc 7302p Firmware by Amd

Epyc 7313 Firmware by Amd

Epyc 7313p Firmware by Amd

Epyc 7343 Firmware by Amd

Epyc 7352 Firmware by Amd

Epyc 7373x Firmware by Amd

Epyc 73f3 Firmware by Amd

Epyc 7402 Firmware by Amd

Epyc 7402p Firmware by Amd

Epyc 7413 Firmware by Amd

Epyc 7443 Firmware by Amd

Epyc 7443p Firmware by Amd

Epyc 7452 Firmware by Amd

Epyc 7453 Firmware by Amd

Epyc 7473x Firmware by Amd

Epyc 74f3 Firmware by Amd

Epyc 7502 Firmware by Amd

Epyc 7502p Firmware by Amd

Epyc 7513 Firmware by Amd

Epyc 7532 Firmware by Amd

Epyc 7542 Firmware by Amd

Epyc 7543 Firmware by Amd

Epyc 7543p Firmware by Amd

Epyc 7552 Firmware by Amd

Epyc 7573x Firmware by Amd

Epyc 75f3 Firmware by Amd

Epyc 7642 Firmware by Amd

Epyc 7643 Firmware by Amd

Epyc 7662 Firmware by Amd

Epyc 7663 Firmware by Amd

Epyc 7702 Firmware by Amd

Epyc 7702p Firmware by Amd

Epyc 7713 Firmware by Amd

Epyc 7713p Firmware by Amd

Epyc 7742 Firmware by Amd

Epyc 7763 Firmware by Amd

Epyc 7773x Firmware by Amd

Epyc 7f32 Firmware by Amd

Epyc 7f52 Firmware by Amd

Epyc 7f72 Firmware by Amd

Epyc 7h12 Firmware by Amd