📦 Ryzen Threadripper Pro 5955wx Firmware

This vulnerability is a Time-of-Check Time-of-Use (TOCTOU) race condition in AMD's ASP bootloader that allows an attacker to tamper with SPI ROM data after it's been read to memory. This can lead to S...

This vulnerability in AMD's CPM OEM SMM (System Management Mode) firmware allows a privileged attacker to manipulate control flow and tamper with SMM handlers. This could lead to escalation of privile...

This vulnerability in AMD System Management Mode (SMM) allows attackers to bypass protocol verification and modify SPI flash memory. This could lead to arbitrary code execution with SMM privileges, af...

CVE-2021-26386 is a memory corruption vulnerability in AMD's Stage 2 Bootloader that could allow a malicious or compromised UApp or ABL to execute arbitrary code. This affects AMD processors with vuln...