Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2024-21925
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Improper input validation within the AmdPspP2CmboxV2 driver may allow a privileged attacker to overwrite SMRAM, leading to arbitrary code execution.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
AMD System Management Mode 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
AMD System Management Mode是美国超威半导体(AMD)公司的系统管理模式。一种CPU的执行模式。 AMD System Management Mode存在安全漏洞,该漏洞源于不正确的输入验证可能允许特权攻击者覆盖SMRAM,从而导致任意代码执行。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
AMDAMD EPYC™ 7001 Processors Naples PI 1.0.0.N -
AMDAMD EPYC™ 7002 Processors Rome PI 1.0.0.K -
AMDAMD EPYC™ 9004 Processors Genoa PI 1.0.0.D -
AMDAMD EPYC™ 7003 Processors Milan PI 1.0.0.E -
AMDAMD Ryzen™ 3000 Series Desktop Processors ComboAM4PI 1.0.0.C -
AMDAMD Ryzen™ 5000 Series Desktop Processors ComboAM4v2PI 1.2.0.D -
AMDAMD Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics ComboAM4v2PI 1.2.0.D -
AMDAMD Ryzen™ 7000 Series Desktop Processors ComboAM5PI 1.2.0.2b -
AMDAMD Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics ComboAM4PI 1.0.0.C -
AMDAMD Ryzen™ 4000 Series Desktop Processor with Radeon™ Graphics ComboAM4v2PI 1.2.0.D -
AMDAMD Ryzen™ 8000 Series Processor with Radeon™ Graphics ComboAM5PI 1.2.0.2b -
AMDAMD Ryzen™ Threadripper™ 3000 Series Processors CastlePeakPI-SP3r3 1.0.0.D -
AMDAMD Ryzen™ Threadripper™ PRO 3000WX Series Processors CastlePeakWSPI-sWRX8 1.0.0.F -
AMDAMD Ryzen™ Threadripper™ PRO 5000WX- Series Desktop Processors ChagallWSPI-sWRX8 1.0.0.9 -
AMDAMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors StormPeakPI-SP6 1.1.0.0h -
AMDAMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics PicassoPI-FP5 1.0.1.2a -
AMDAMD Ryzen™ 3000 Series Mobile Processor with Radeon™ Graphics PicassoPI-FP5 1.0.1.2a -
AMDAMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics RenoirPI-FP6 1.0.0.Ea -
AMDAMD Ryzen™ 5000 Series Processors with Radeon™ Graphics CezannePI-FP6 1.0.1.1a -
AMDAMD Ryzen™ 7020 Series Processors with Radeon™ Graphics MendocinoPI-FT6 1.0.0.7a -
AMDAMD Ryzen™ 6000 Series Processor with Radeon™ Graphics RembrandtPI-FP7 1.0.0.Ba -
AMDAMD Ryzen™ 7035 Series Processor with Radeon™ Graphics RembrandtPI-FP7 1.0.0.Ba -
AMDAMD Ryzen™ 7040 Series Processors with Radeon™ Graphics PhoenixPI-FP8-FP7 1.1.8.0 -
AMDAMD Ryzen™ 8040 Series Mobile Processors with Radeon™ Graphics PhoenixPI-FP8-FP7 1.1.8.0 -
AMDAMD Ryzen™ 7000 Series Mobile Processors DragonRangeFL1PI 1.0.0.3f -
AMDAMD EPYC™ Embedded 3000 SnowyOwlPI 1.1.0.E -
AMDAMD EPYC™ Embedded 7002 EmbRomePI-SP3 1.0.0.D -
AMDAMD EPYC™ Embedded 7003 EmbMilanPI-SP3 1.0.0.A -
AMDAMD EPYC™ Embedded 9004 EmbGenoaPI 1.0.0.9 -
AMDAMD Ryzen™ Embedded 5000 EmbAM4PI 1.0.0.7 -
AMDAMD Ryzen™ Embedded 7000 EmbeddedV2KAPI-FP6 1.0.0.7 -
AMDAMD Ryzen™ Embedded V2000 EmbeddedPI-FP6 1.0.0.B -
AMDAMD Ryzen™ Embedded V3000 EmbeddedPI_FP7R2 1.0.0.C -
AMDAMD Ryzen™ Embedded 8000 EmbeddedPhoenixPI-FP7r2_1.2.0.0 -
AMDAMD Ryzen™ Embedded R1000 EmbeddedPI-FP5 1.2.0.F -
AMDAMD Ryzen™ Embedded R2000 EmbeddedR2KPIFP5 1.0.0.5 -
AMDAMD Ryzen™ Embedded V1000 EmbeddedPI-FP5 1.2.0.F -
II. Public POCs for CVE-2024-21925
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2024-21925
Please Login to view more intelligence information
IV. Related Vulnerabilities
Same product: AMD EPYC™ 7001 Processors
Same vendor: AMD
Same weakness: CWE-20
V. Comments for CVE-2024-21925

No comments yet

Leave a comment