CVE-2021-26312
MEDIUMAMD Epyc 7601 Firmware - Exposure to Wrong Actor
Title source: ruleDescription
Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity.
Scores
CVSS v3
5.5
EPSS
0.0014
EPSS Percentile
33.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Classification
CWE
CWE-665
CWE-668
Status
published
Affected Products (50)
amd/epyc_7601_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7551p_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7551_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7501_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7451_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7401_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7371_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7351p_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7351_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7301_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7281_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7261_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7251_firmware
< naplespi-sp3_1.0.0.g
amd/epyc_7f72_firmware
< romepi-sp3_1.0.0.c
amd/epyc_7f52_firmware
< romepi-sp3_1.0.0.c
... and 35 more
Timeline
Published
Nov 16, 2021
Tracked Since
Feb 18, 2026