Vulnerability Name:

CVE-2021-26372 (CCN-226299)

Assigned:2021-01-29
Published:2022-05-10
Updated:2022-05-25
Summary:Insufficient bound checks related to PCIE in the System Management Unit (SMU) may result in access to an invalid address space that could result in denial of service.
CVSS v3 Severity:5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
3.5 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Low
CVSS v2 Severity:4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
Vulnerability Type:CWE-119
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2021-26372

Source: XF
Type: UNKNOWN
amd-cve202126372-dos(226299)

Source: MISC
Type: Vendor Advisory
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027

Source: CCN
Type: AMD-SB-1028
AMD Server Vulnerabilities - May 2022

Source: MISC
Type: Vendor Advisory
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1028

Vulnerable Configuration:Configuration 1:
  • cpe:/o:amd:epyc_7232p_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7232p:-:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:amd:epyc_7302p_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7302p:-:*:*:*:*:*:*:*

    • Configuration 3:
  • cpe:/o:amd:epyc_7402p_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7402p:-:*:*:*:*:*:*:*

    • Configuration 4:
  • cpe:/o:amd:epyc_7502p_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7502p:-:*:*:*:*:*:*:*

    • Configuration 5:
  • cpe:/o:amd:epyc_7702p_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7702p:-:*:*:*:*:*:*:*

    • Configuration 6:
  • cpe:/o:amd:epyc_7252_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7252:-:*:*:*:*:*:*:*

    • Configuration 7:
  • cpe:/o:amd:epyc_7262_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7262:-:*:*:*:*:*:*:*

    • Configuration 8:
  • cpe:/o:amd:epyc_7272_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7272:-:*:*:*:*:*:*:*

    • Configuration 9:
  • cpe:/o:amd:epyc_7282_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7282:-:*:*:*:*:*:*:*

    • Configuration 10:
  • cpe:/o:amd:epyc_7302_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7302:-:*:*:*:*:*:*:*

    • Configuration 11:
  • cpe:/o:amd:epyc_7352_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7352:-:*:*:*:*:*:*:*

    • Configuration 12:
  • cpe:/o:amd:epyc_7402_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7402:-:*:*:*:*:*:*:*

    • Configuration 13:
  • cpe:/o:amd:epyc_7452_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7452:-:*:*:*:*:*:*:*

    • Configuration 14:
  • cpe:/o:amd:epyc_7502_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7502:-:*:*:*:*:*:*:*

    • Configuration 15:
  • cpe:/o:amd:epyc_7532_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7532:-:*:*:*:*:*:*:*

    • Configuration 16:
  • cpe:/o:amd:epyc_7542_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7542:-:*:*:*:*:*:*:*

    • Configuration 17:
  • cpe:/o:amd:epyc_7552_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7552:-:*:*:*:*:*:*:*

    • Configuration 18:
  • cpe:/o:amd:epyc_7642_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7642:-:*:*:*:*:*:*:*

    • Configuration 19:
  • cpe:/o:amd:epyc_7662_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7662:-:*:*:*:*:*:*:*

    • Configuration 20:
  • cpe:/o:amd:epyc_7702_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7702:-:*:*:*:*:*:*:*

    • Configuration 21:
  • cpe:/o:amd:epyc_7742_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7742:-:*:*:*:*:*:*:*

    • Configuration 22:
  • cpe:/o:amd:epyc_7f32_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7f32:-:*:*:*:*:*:*:*

    • Configuration 23:
  • cpe:/o:amd:epyc_7f52_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7f52:-:*:*:*:*:*:*:*

    • Configuration 24:
  • cpe:/o:amd:epyc_7f72_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7f72:-:*:*:*:*:*:*:*

    • Configuration 25:
  • cpe:/o:amd:epyc_7f32_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7f32:-:*:*:*:*:*:*:*

    • Configuration 26:
  • cpe:/o:amd:epyc_7f52_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7f52:-:*:*:*:*:*:*:*

    • Configuration 27:
  • cpe:/o:amd:epyc_7f72_firmware:*:*:*:*:*:*:*:* (Version < romepi-sp3_1.0.0.d)
  • AND
  • cpe:/h:amd:epyc_7f72:-:*:*:*:*:*:*:*

    • Configuration 28:
  • cpe:/o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7313p:-:*:*:*:*:*:*:*

    • Configuration 29:
  • cpe:/o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7443p:-:*:*:*:*:*:*:*

    • Configuration 30:
  • cpe:/o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7543p:-:*:*:*:*:*:*:*

    • Configuration 31:
  • cpe:/o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7713p:-:*:*:*:*:*:*:*

    • Configuration 32:
  • cpe:/o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7773x:-:*:*:*:*:*:*:*

    • Configuration 33:
  • cpe:/o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7763:-:*:*:*:*:*:*:*

    • Configuration 34:
  • cpe:/o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7713:-:*:*:*:*:*:*:*

    • Configuration 35:
  • cpe:/o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7663:-:*:*:*:*:*:*:*

    • Configuration 36:
  • cpe:/o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7643:-:*:*:*:*:*:*:*

    • Configuration 37:
  • cpe:/o:amd:epyc_7573x_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7573x:-:*:*:*:*:*:*:*

    • Configuration 38:
  • cpe:/o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_75f3:-:*:*:*:*:*:*:*

    • Configuration 39:
  • cpe:/o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7513:-:*:*:*:*:*:*:*

    • Configuration 40:
  • cpe:/o:amd:epyc_7473x_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7473x:-:*:*:*:*:*:*:*

    • Configuration 41:
  • cpe:/o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7453:-:*:*:*:*:*:*:*

    • Configuration 42:
  • cpe:/o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_74f3:-:*:*:*:*:*:*:*

    • Configuration 43:
  • cpe:/o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7413:-:*:*:*:*:*:*:*

    • Configuration 44:
  • cpe:/o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_73f3:-:*:*:*:*:*:*:*

    • Configuration 45:
  • cpe:/o:amd:epyc_7373x_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7373x:-:*:*:*:*:*:*:*

    • Configuration 46:
  • cpe:/o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_7343:-:*:*:*:*:*:*:*

    • Configuration 47:
  • cpe:/o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)
  • AND
  • cpe:/h:amd:epyc_72f3:-:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:7540
    P
    		kernel-firmware-all-20230320-150500.1.1 on GA media (Moderate)
    2023-06-12
    oval:org.opensuse.security:def:3609
    P
    		libipa_hbac0-1.16.1-4.17.1 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:511
    P
    		Security update for kernel-firmware (Important)
    2022-06-02
    oval:org.opensuse.security:def:95239
    P
    		Security update for kernel-firmware (Important)
    2022-06-02
    oval:org.opensuse.security:def:900
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-25
    oval:org.opensuse.security:def:125721
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-25
    oval:org.opensuse.security:def:126886
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-25
    oval:org.opensuse.security:def:6056
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-25
    oval:org.opensuse.security:def:42293
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-25
    oval:org.opensuse.security:def:127283
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-25
    oval:org.opensuse.security:def:42389
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-25
    oval:org.opensuse.security:def:118902
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-19
    oval:org.opensuse.security:def:119209
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-19
    oval:org.opensuse.security:def:119399
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-19
    oval:org.opensuse.security:def:118712
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-19
    oval:org.opensuse.security:def:119584
    P
    		Security update for kernel-firmware (Moderate)
    2022-05-19
    BACK
    amd epyc 7232p firmware *
    amd epyc 7232p -
    amd epyc 7302p firmware *
    amd epyc 7302p -
    amd epyc 7402p firmware *
    amd epyc 7402p -
    amd epyc 7502p firmware *
    amd epyc 7502p -
    amd epyc 7702p firmware *
    amd epyc 7702p -
    amd epyc 7252 firmware *
    amd epyc 7252 -
    amd epyc 7262 firmware *
    amd epyc 7262 -
    amd epyc 7272 firmware *
    amd epyc 7272 -
    amd epyc 7282 firmware *
    amd epyc 7282 -
    amd epyc 7302 firmware *
    amd epyc 7302 -
    amd epyc 7352 firmware *
    amd epyc 7352 -
    amd epyc 7402 firmware *
    amd epyc 7402 -
    amd epyc 7452 firmware *
    amd epyc 7452 -
    amd epyc 7502 firmware *
    amd epyc 7502 -
    amd epyc 7532 firmware *
    amd epyc 7532 -
    amd epyc 7542 firmware *
    amd epyc 7542 -
    amd epyc 7552 firmware *
    amd epyc 7552 -
    amd epyc 7642 firmware *
    amd epyc 7642 -
    amd epyc 7662 firmware *
    amd epyc 7662 -
    amd epyc 7702 firmware *
    amd epyc 7702 -
    amd epyc 7742 firmware *
    amd epyc 7742 -
    amd epyc 7f32 firmware *
    amd epyc 7f32 -
    amd epyc 7f52 firmware *
    amd epyc 7f52 -
    amd epyc 7f72 firmware *
    amd epyc 7f72 -
    amd epyc 7f32 firmware *
    amd epyc 7f32 -
    amd epyc 7f52 firmware *
    amd epyc 7f52 -
    amd epyc 7f72 firmware *
    amd epyc 7f72 -
    amd epyc 7313p firmware *
    amd epyc 7313p -
    amd epyc 7443p firmware *
    amd epyc 7443p -
    amd epyc 7543p firmware *
    amd epyc 7543p -
    amd epyc 7713p firmware *
    amd epyc 7713p -
    amd epyc 7773x firmware *
    amd epyc 7773x -
    amd epyc 7763 firmware *
    amd epyc 7763 -
    amd epyc 7713 firmware *
    amd epyc 7713 -
    amd epyc 7663 firmware *
    amd epyc 7663 -
    amd epyc 7643 firmware *
    amd epyc 7643 -
    amd epyc 7573x firmware *
    amd epyc 7573x -
    amd epyc 75f3 firmware *
    amd epyc 75f3 -
    amd epyc 7513 firmware *
    amd epyc 7513 -
    amd epyc 7473x firmware *
    amd epyc 7473x -
    amd epyc 7453 firmware *
    amd epyc 7453 -
    amd epyc 74f3 firmware *
    amd epyc 74f3 -
    amd epyc 7413 firmware *
    amd epyc 7413 -
    amd epyc 73f3 firmware *
    amd epyc 73f3 -
    amd epyc 7373x firmware *
    amd epyc 7373x -
    amd epyc 7343 firmware *
    amd epyc 7343 -
    amd epyc 72f3 firmware *
    amd epyc 72f3 -