amd ryzen_7_5700g_firmware 在命令中使用的特殊元素转义处理不恰当(命令注入)
CVE编号
CVE-2021-26384利用情况
暂无补丁情况
N/A披露时间
2022-07-15漏洞描述
A malformed SMI (System Management Interface) command may allow an attacker to establish a corrupted SMI Trigger Info data structure, potentially leading to out-of-bounds memory reads and writes when triggering an SMI resulting in a potential loss of resources.解决建议
建议您更新当前系统或软件至最新版,完成漏洞的修复。
参考链接 |
|
|---|---|
| https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027 |
受影响软件情况
| # | 类型 | 厂商 | 产品 | 版本 | 影响面 | ||||
| 1 | |||||||||
|---|---|---|---|---|---|---|---|---|---|
| 运行在以下环境 | |||||||||
| 系统 | amd | athlon_gold_3150u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | athlon_silver_3050u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_2200u_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_2300u_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3200u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3250u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3300u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3350u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3450u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3500c_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3500u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3550h_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3580u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3700c_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3700u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3750h_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_3780u_firmware | - | - | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_5125c_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_5300ge_firmware | * | Up to (excluding) comboam4_v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_5300g_firmware | * | Up to (excluding) comboam4_v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_5400u_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_5425c_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_3_5425u_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_2500u_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_2600h_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_2600x_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_2600_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_2700x_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_2700_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_5560u_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_5600ge_firmware | * | Up to (excluding) comboam4_v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_5600g_firmware | * | Up to (excluding) comboam4_v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_5600hs_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_5600h_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_5600u_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_5625c_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_5_5625u_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_2700u_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_2700x_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_2700_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_2800h_firmware | * | Up to (excluding) comboam4v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_5700ge_firmware | * | Up to (excluding) comboam4_v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_5700g_firmware | * | Up to (excluding) comboam4_v2_pi_1.2.0.6c | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_5800hs_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_5800h_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_5800u_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_5825c_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_7_5825u_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_9_5900hs_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_9_5900hx_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_9_5980hs_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 系统 | amd | ryzen_9_5980hx_firmware | * | Up to (excluding) cezannepi-fp6_1.0.0.9 | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | athlon_gold_3150u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | athlon_silver_3050u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_2200u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_2300u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3200u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3250u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3300u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3350u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3450u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3500c | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3500u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3550h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3580u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3700c | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3700u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3750h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_3780u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_5125c | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_5300g | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_5300ge | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_5400u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_5425c | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_3_5425u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_2500u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_2600 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_2600h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_2600x | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_2700 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_2700x | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_5560u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_5600g | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_5600ge | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_5600h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_5600hs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_5600u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_5625c | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_5_5625u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_2700 | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_2700u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_2700x | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_2800h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_5700g | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_5700ge | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_5800h | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_5800hs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_5800u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_5825c | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_7_5825u | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_9_5900hs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_9_5900hx | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_9_5980hs | - | - | |||||
| 运行在以下环境 | |||||||||
| 硬件 | amd | ryzen_9_5980hx | - | - | |||||
- 攻击路径 本地
- 攻击复杂度 低
- 权限要求 低
- 影响范围 未更改
- 用户交互 无
- 可用性 高
- 保密性 高
- 完整性 高
| CWE-ID | 漏洞类型 |
| CWE-125 | 跨界内存读 |
| CWE-77 | 在命令中使用的特殊元素转义处理不恰当(命令注入) |
| CWE-787 | 跨界内存写 |
Exp相关链接
版权声明
本站原创文章转载请注明文章出处及链接,谢谢合作!
评论