Improper input validation in Amd 3rd Gen Epyc™

CVE-2021-46771

Insufficient validation of addresses in AMD Secure Processor (ASP) firmware system call may potentially lead to arbitrary code execution by a compromised user application.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.001 (28.0th percentile) — read the EPSS interpretation.