Vulnerability in Amd Ryzen™ 5000 Series Processors With Radeon™ Graphics “Barcelo”
CVE-2022-23821
Improper access control in System Management Mode (SMM) may allow an attacker to write to SPI ROM potentially leading to arbitrary code execution.
EPSS: 0.003 (56.0th percentile) — read the EPSS interpretation.
Affected products
- Amd Ryzen™ 5000 Series Processors With Radeon™ Graphics “Barcelo” — versions various
- Amd Ryzen™ 6000 Series Processors With Radeon™ Graphics "Rembrandt" — versions various
- Amd Ryzen™ 7030 Series Mobile Processors With Radeon™ Graphics “Barcelo-r” — versions various
- Amd Ryzen™ 7035 Series Processors With Radeon™ Graphics “Rembrandt-r” — versions various
- Amd Ryzen™ Embedded 5000 — versions various
- Amd Ryzen™ Embedded R1000 — versions various
- Amd Ryzen™ Embedded R2000 — versions various
- Amd Ryzen™ Embedded V1000 — versions various
- Amd Ryzen™ Embedded V2000 — versions various
- Amd Ryzen™ Embedded V3000 — versions various
References
- www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002 (vendor-advisory)
- www.amd.com/en/corporate/product-security/bulletin/AMD-SB-5001 (vendor-advisory)