Ryzen™ 2000 series desktop processors “pinnacle ridge”

This hub aggregates every CVE we track for Ryzen™ 2000 series desktop processors “pinnacle ridge”, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 5 most recently published vulnerabilities affecting Ryzen™ 2000 series desktop processors “pinnacle ridge”.

• CVE-2021-46773Insufficient input validation in ABL may enable a privileged attacker to corrupt ASP memory, potentially resulting in a loss of integrity or code execution. 8.8May 9, 2023
• CVE-2021-46756Insufficient validation of inputs in SVC_MAP_USER_STACK in the ASP (AMD Secure Processor) bootloader may allow an attacker with a malicious Uapp or ABL to send malformed or invalid syscall to the b...9.1May 9, 2023
• CVE-2021-46749Insufficient bounds checking in ASP (AMD Secure Processor) may allow for an out of bounds read in SMI (System Management Interface) mailbox checksum calculation triggering a data abort, resulting i...7.5May 9, 2023
• CVE-2021-26406Insufficient validation in parsing Owner's Certificate Authority (OCA) certificates in SEV (AMD Secure Encrypted Virtualization) and SEV-ES user application can lead to a host crash potentially res...7.5May 9, 2023
• CVE-2021-26354Insufficient bounds checking in ASP may allow an attacker to issue a system call from a compromised ABL which may cause arbitrary memory values to be initialized to zero, potentially leading to a l...5.5May 9, 2023