Ryzen_5600ge_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Ryzen_5600ge_firmware
(Amd)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	16

Date	Id	Summary	Products	Score	Patch	Annotated
2022-11-15	CVE-2022-29277	Incorrect pointer checks within the the FwBlockServiceSmm driver can allow arbitrary RAM modifications During review of the FwBlockServiceSmm driver, certain instances of SpiAccessLib could be tricked into writing 0xff to arbitrary system and SMRAM addresses. Fixed in: INTEL Purley-R: 05.21.51.0048 Whitley: 05.42.23.0066 Cedar Island: 05.42.11.0021 Eagle Stream: 05.44.25.0052 Greenlow/Greenlow-R(skylake/kabylake): Trunk Mehlow/Mehlow-R (CoffeeLake-S): Trunk Tatlow (RKL-S): Trunk Denverton:...	Genoa_firmware, Hygon_1_firmware, Hygon_2_firmware, Hygon_3_firmware, Milan_firmware, Rome_firmware, Ryzen_5300g_firmware, Ryzen_5300ge_firmware, Ryzen_5600g_firmware, Ryzen_5600ge_firmware, Ryzen_5600x_firmware, Ryzen_5700g_firmware, Ryzen_5700ge_firmware, Ryzen_5800x3d_firmware, Ryzen_5800x_firmware, Ryzen_5900x_firmware, Ryzen_5950x_firmware, Snowy_owl_r1000_firmware, Snowy_owl_r2000_firmware, Snowy_owl_v2000_firmware, Snowy_owl_v3000_firmware, Alder_lake_firmware, Bakerville_firmware, Cedar_island_firmware, Comet_lake\-S_firmware, Denverton_firmware, Eagle_stream_firmware, Grangeville_de_ns_firmware, Granville_de_firmware, Greenlow\-R_firmware, Greenlow_firmware, Idaville_firmware, Mehlow\-R_firmware, Mehlow_firmware, Purley\-R_firmware, Tatlow_firmware, Tiger_lake_h\/up3_firmware, Whiskey_lake_firmware, Whitley_firmware	8.8
2023-05-09	CVE-2021-46753	Failure to validate the length fields of the ASP (AMD Secure Processor) sensor fusion hub headers may allow an attacker with a malicious Uapp or ABL to map the ASP sensor fusion hub region and overwrite data structures leading to a potential loss of confidentiality and integrity.	Athlon_gold_3150g_firmware, Athlon_gold_3150ge_firmware, Athlon_silver_3050ge_firmware, Ryzen_1200_\(Af\)_firmware, Ryzen_1600_\(Af\)_firmware, Ryzen_2200g_firmware, Ryzen_2200ge_firmware, Ryzen_2300x_firmware, Ryzen_2400g_firmware, Ryzen_2400ge_firmware, Ryzen_2500x_firmware, Ryzen_2600_firmware, Ryzen_2600e_firmware, Ryzen_2600x_firmware, Ryzen_2700_firmware, Ryzen_2700e_firmware, Ryzen_2700x_firmware, Ryzen_2920x_firmware, Ryzen_2950x_firmware, Ryzen_2970wx_firmware, Ryzen_2990wx_firmware, Ryzen_3100_firmware, Ryzen_3300x_firmware, Ryzen_3500_firmware, Ryzen_3500x_firmware, Ryzen_3600_firmware, Ryzen_3600x_firmware, Ryzen_3600xt_firmware, Ryzen_3800x_firmware, Ryzen_3800xt_firmware, Ryzen_3900_firmware, Ryzen_3900x_firmware, Ryzen_3900xt_firmware, Ryzen_3950x_firmware, Ryzen_5300g_firmware, Ryzen_5300ge_firmware, Ryzen_5500_firmware, Ryzen_5600_firmware, Ryzen_5600g_firmware, Ryzen_5600ge_firmware, Ryzen_5600x_firmware, Ryzen_5700g_firmware, Ryzen_5700ge_firmware, Ryzen_5700x_firmware, Ryzen_5800_firmware, Ryzen_5800x3d_firmware, Ryzen_5800x_firmware, Ryzen_5900_firmware, Ryzen_5900x_firmware, Ryzen_5945wx_firmware, Ryzen_5950x_firmware, Ryzen_5955wx_firmware, Ryzen_5965wx_firmware, Ryzen_5975wx_firmware, Ryzen_5995wx_firmware, Ryzen_6600h_firmware, Ryzen_6600hs_firmware, Ryzen_6600u_firmware, Ryzen_6800h_firmware, Ryzen_6800hs_firmware, Ryzen_6800u_firmware, Ryzen_6900hs_firmware, Ryzen_6900hx_firmware, Ryzen_6980hs_firmware, Ryzen_6980hx_firmware, Ryzen_pro_2100ge_firmware	9.1
2023-05-09	CVE-2021-46749	Insufficient bounds checking in ASP (AMD Secure Processor) may allow for an out of bounds read in SMI (System Management Interface) mailbox checksum calculation triggering a data abort, resulting in a potential denial of service.	Athlon_gold_3150g_firmware, Athlon_gold_3150ge_firmware, Athlon_silver_3050ge_firmware, Ryzen_1200_\(Af\)_firmware, Ryzen_1600_\(Af\)_firmware, Ryzen_2200g_firmware, Ryzen_2200ge_firmware, Ryzen_2300x_firmware, Ryzen_2400g_firmware, Ryzen_2400ge_firmware, Ryzen_2500x_firmware, Ryzen_2600_firmware, Ryzen_2600e_firmware, Ryzen_2600x_firmware, Ryzen_2700_firmware, Ryzen_2700e_firmware, Ryzen_2700x_firmware, Ryzen_2920x_firmware, Ryzen_2950x_firmware, Ryzen_2970wx_firmware, Ryzen_2990wx_firmware, Ryzen_3100_firmware, Ryzen_3300x_firmware, Ryzen_3500_firmware, Ryzen_3500x_firmware, Ryzen_3600_firmware, Ryzen_3600x_firmware, Ryzen_3600xt_firmware, Ryzen_3800x_firmware, Ryzen_3800xt_firmware, Ryzen_3900_firmware, Ryzen_3900x_firmware, Ryzen_3900xt_firmware, Ryzen_3950x_firmware, Ryzen_5300g_firmware, Ryzen_5300ge_firmware, Ryzen_5500_firmware, Ryzen_5600_firmware, Ryzen_5600g_firmware, Ryzen_5600ge_firmware, Ryzen_5600x_firmware, Ryzen_5700g_firmware, Ryzen_5700ge_firmware, Ryzen_5700x_firmware, Ryzen_5800_firmware, Ryzen_5800x3d_firmware, Ryzen_5800x_firmware, Ryzen_5900_firmware, Ryzen_5900x_firmware, Ryzen_5945wx_firmware, Ryzen_5950x_firmware, Ryzen_5955wx_firmware, Ryzen_5965wx_firmware, Ryzen_5975wx_firmware, Ryzen_5995wx_firmware, Ryzen_pro_2100ge_firmware	7.5
2023-05-09	CVE-2021-46794	Insufficient bounds checking in ASP (AMD Secure Processor) may allow for an out of bounds read in SMI (System Management Interface) mailbox checksum calculation triggering a data abort, resulting in a potential denial of service.	Athlon_gold_3150g_firmware, Athlon_gold_3150ge_firmware, Athlon_silver_3050ge_firmware, Ryzen_1200_\(Af\)_firmware, Ryzen_1600_\(Af\)_firmware, Ryzen_2200g_firmware, Ryzen_2200ge_firmware, Ryzen_2300x_firmware, Ryzen_2400g_firmware, Ryzen_2400ge_firmware, Ryzen_2500x_firmware, Ryzen_2600_firmware, Ryzen_2600e_firmware, Ryzen_2600x_firmware, Ryzen_2700_firmware, Ryzen_2700e_firmware, Ryzen_2700x_firmware, Ryzen_2920x_firmware, Ryzen_2950x_firmware, Ryzen_2970wx_firmware, Ryzen_2990wx_firmware, Ryzen_3100_firmware, Ryzen_3300x_firmware, Ryzen_3500_firmware, Ryzen_3500x_firmware, Ryzen_3600_firmware, Ryzen_3600x_firmware, Ryzen_3600xt_firmware, Ryzen_3800x_firmware, Ryzen_3800xt_firmware, Ryzen_3900_firmware, Ryzen_3900x_firmware, Ryzen_3900xt_firmware, Ryzen_3950x_firmware, Ryzen_5300g_firmware, Ryzen_5300ge_firmware, Ryzen_5500_firmware, Ryzen_5600_firmware, Ryzen_5600g_firmware, Ryzen_5600ge_firmware, Ryzen_5600x_firmware, Ryzen_5700g_firmware, Ryzen_5700ge_firmware, Ryzen_5700x_firmware, Ryzen_5800_firmware, Ryzen_5800x3d_firmware, Ryzen_5800x_firmware, Ryzen_5900_firmware, Ryzen_5900x_firmware, Ryzen_5945wx_firmware, Ryzen_5950x_firmware, Ryzen_5955wx_firmware, Ryzen_5965wx_firmware, Ryzen_5975wx_firmware, Ryzen_5995wx_firmware, Ryzen_pro_2100ge_firmware	7.5
2023-05-09	CVE-2021-46773	Insufficient input validation in ABL may enable a privileged attacker to corrupt ASP memory, potentially resulting in a loss of integrity or code execution.	Ryzen_1200_\(Af\)_firmware, Ryzen_1600_\(Af\)_firmware, Ryzen_2200g_firmware, Ryzen_2200ge_firmware, Ryzen_2300x_firmware, Ryzen_2400g_firmware, Ryzen_2400ge_firmware, Ryzen_2500x_firmware, Ryzen_2600_firmware, Ryzen_2600e_firmware, Ryzen_2600x_firmware, Ryzen_2700_firmware, Ryzen_2700e_firmware, Ryzen_2700x_firmware, Ryzen_2920x_firmware, Ryzen_2950x_firmware, Ryzen_2970wx_firmware, Ryzen_2990wx_firmware, Ryzen_3100_firmware, Ryzen_3300x_firmware, Ryzen_3500_firmware, Ryzen_3500x_firmware, Ryzen_3600_firmware, Ryzen_3600x_firmware, Ryzen_3600xt_firmware, Ryzen_3800x_firmware, Ryzen_3800xt_firmware, Ryzen_3900_firmware, Ryzen_3900x_firmware, Ryzen_3900xt_firmware, Ryzen_3950x_firmware, Ryzen_5300g_firmware, Ryzen_5300ge_firmware, Ryzen_5500_firmware, Ryzen_5600_firmware, Ryzen_5600g_firmware, Ryzen_5600ge_firmware, Ryzen_5600x_firmware, Ryzen_5700g_firmware, Ryzen_5700ge_firmware, Ryzen_5700x_firmware, Ryzen_5800_firmware, Ryzen_5800x3d_firmware, Ryzen_5800x_firmware, Ryzen_5900_firmware, Ryzen_5900x_firmware, Ryzen_5945wx_firmware, Ryzen_5950x_firmware, Ryzen_5955wx_firmware, Ryzen_5965wx_firmware, Ryzen_5975wx_firmware, Ryzen_5995wx_firmware, Ryzen_6600h_firmware, Ryzen_6600hs_firmware, Ryzen_6600u_firmware, Ryzen_6800h_firmware, Ryzen_6800hs_firmware, Ryzen_6800u_firmware, Ryzen_6900hs_firmware, Ryzen_6900hx_firmware, Ryzen_6980hs_firmware, Ryzen_6980hx_firmware, Ryzen_pro_2100ge_firmware	8.8
2023-05-09	CVE-2021-46792	Time-of-check Time-of-use (TOCTOU) in the BIOS2PSP command may allow an attacker with a malicious BIOS to create a race condition causing the ASP bootloader to perform out-of-bounds SRAM reads upon an S3 resume event potentially leading to a denial of service.	Athlon_gold_3150g_firmware, Athlon_gold_3150ge_firmware, Athlon_silver_3050ge_firmware, Ryzen_1200_\(Af\)_firmware, Ryzen_1600_\(Af\)_firmware, Ryzen_2200g_firmware, Ryzen_2200ge_firmware, Ryzen_2300x_firmware, Ryzen_2400g_firmware, Ryzen_2400ge_firmware, Ryzen_2500x_firmware, Ryzen_2600_firmware, Ryzen_2600e_firmware, Ryzen_2600x_firmware, Ryzen_2700_firmware, Ryzen_2700e_firmware, Ryzen_2700x_firmware, Ryzen_2920x_firmware, Ryzen_2950x_firmware, Ryzen_2970wx_firmware, Ryzen_2990wx_firmware, Ryzen_3100_firmware, Ryzen_3300x_firmware, Ryzen_3500_firmware, Ryzen_3500x_firmware, Ryzen_3600_firmware, Ryzen_3600x_firmware, Ryzen_3600xt_firmware, Ryzen_3800x_firmware, Ryzen_3800xt_firmware, Ryzen_3900_firmware, Ryzen_3900x_firmware, Ryzen_3900xt_firmware, Ryzen_3950x_firmware, Ryzen_5300g_firmware, Ryzen_5300ge_firmware, Ryzen_5500_firmware, Ryzen_5600_firmware, Ryzen_5600g_firmware, Ryzen_5600ge_firmware, Ryzen_5600x_firmware, Ryzen_5700g_firmware, Ryzen_5700ge_firmware, Ryzen_5700x_firmware, Ryzen_5800_firmware, Ryzen_5800x3d_firmware, Ryzen_5800x_firmware, Ryzen_5900_firmware, Ryzen_5900x_firmware, Ryzen_5945wx_firmware, Ryzen_5950x_firmware, Ryzen_5955wx_firmware, Ryzen_5965wx_firmware, Ryzen_5975wx_firmware, Ryzen_5995wx_firmware	5.9