📦 Ryzen Threadripper 3990x Firmware

This vulnerability allows attackers with local access to bypass System Management Mode (SMM) protections and write to SPI ROM, potentially leading to arbitrary code execution with high privileges. It ...

This vulnerability in AMD processors allows attackers to corrupt SMRAM (System Management Mode RAM) by exploiting improper validation of SMM communication buffers. This could lead to arbitrary code ex...

This vulnerability is a Time-of-Check Time-of-Use (TOCTOU) race condition in AMD's ASP bootloader that allows an attacker to tamper with SPI ROM data after it's been read to memory. This can lead to S...

This vulnerability in AMD's CPM OEM SMM (System Management Mode) firmware allows a privileged attacker to manipulate control flow and tamper with SMM handlers. This could lead to escalation of privile...

This vulnerability in AMD System Management Mode (SMM) allows attackers to bypass protocol verification and modify SPI flash memory. This could lead to arbitrary code execution with SMM privileges, af...

CVE-2021-26386 is a memory corruption vulnerability in AMD's Stage 2 Bootloader that could allow a malicious or compromised UApp or ABL to execute arbitrary code. This affects AMD processors with vuln...