CVE-2021-26346 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AMD	CNA	---				---
CVE	ADP	---				---
CISA-ADP	ADP	5.5 MEDIUM	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 15%

Vendor	Product	Version
amd	ryzen_3_3100_firmware	-
amd	ryzen_3_3200g_firmware	-
amd	ryzen_3_3200u_firmware	-
amd	ryzen_3_3250c_firmware	-
amd	ryzen_3_3250u_firmware	-
amd	ryzen_3_3300g_firmware	-
amd	ryzen_3_3300u_firmware	-
amd	ryzen_3_3300x_firmware	-
amd	ryzen_3_3350u_firmware	-
amd	ryzen_3_3450u_firmware	-
amd	ryzen_3_3500c_firmware	-
amd	ryzen_3_3500u_firmware	-
amd	ryzen_3_3550h_firmware	-
amd	ryzen_3_3580u_firmware	-
amd	ryzen_3_3700c_firmware	-
amd	ryzen_3_3700u_firmware	-
amd	ryzen_3_3750h_firmware	-
amd	ryzen_3_3780u_firmware	-
amd	ryzen_3_5125c_firmware	-
amd	ryzen_3_5300g_firmware	-
amd	ryzen_3_5300ge_firmware	-
amd	ryzen_3_5300u_firmware	-
amd	ryzen_3_5400u_firmware	-
amd	ryzen_3_5425c_firmware	-
amd	ryzen_3_5425u_firmware	-
amd	ryzen_3_pro_3200g_firmware	-
amd	ryzen_3_pro_3200ge_firmware	-
amd	ryzen_3_pro_3300u_firmware	-
amd	ryzen_5_3400g_firmware	-
amd	ryzen_5_3450g_firmware	-
amd	ryzen_5_3450u_firmware	-
amd	ryzen_5_3500_firmware	-
amd	ryzen_5_3500c_firmware	-
amd	ryzen_5_3500u_firmware	-
amd	ryzen_5_3500x_firmware	-
amd	ryzen_5_3550h_firmware	-
amd	ryzen_5_3580u_firmware	-
amd	ryzen_5_3600_firmware	-
amd	ryzen_5_3600x_firmware	-
amd	ryzen_5_3600xt_firmware	-
amd	ryzen_5_5500_firmware	-
amd	ryzen_5_5500u_firmware	-
amd	ryzen_5_5560u_firmware	-
amd	ryzen_5_5600_firmware	-
amd	ryzen_5_5600g_firmware	-
amd	ryzen_5_5600ge_firmware	-
amd	ryzen_5_5600h_firmware	-
amd	ryzen_5_5600hs_firmware	-
amd	ryzen_5_5600u_firmware	-
amd	ryzen_5_5600x_firmware	-
amd	ryzen_5_5625c_firmware	-
amd	ryzen_5_5625u_firmware	-
amd	ryzen_5_5700g_firmware	-
amd	ryzen_5_5700ge_firmware	-
amd	ryzen_5_pro_3350g_firmware	-
amd	ryzen_5_pro_3350ge_firmware	-
amd	ryzen_5_pro_3400g_firmware	-
amd	ryzen_5_pro_3400ge_firmware	-
amd	ryzen_5_pro_3500u_firmware	-
amd	ryzen_7_3700c_firmware	-
amd	ryzen_7_3700u_firmware	-
amd	ryzen_7_3700x_firmware	-
amd	ryzen_7_3750h_firmware	-
amd	ryzen_7_3780u_firmware	-
amd	ryzen_7_3800x_firmware	-
amd	ryzen_7_3800xt_firmware	-
amd	ryzen_7_5700g_firmware	-
amd	ryzen_7_5700ge_firmware	-
amd	ryzen_7_5700u_firmware	-
amd	ryzen_7_5700x_firmware	-
amd	ryzen_7_5800_firmware	-
amd	ryzen_7_5800h_firmware	-
amd	ryzen_7_5800hs_firmware	-
amd	ryzen_7_5800u_firmware	-
amd	ryzen_7_5800x_firmware	-
amd	ryzen_7_5800x3d_firmware	-
amd	ryzen_7_5825c_firmware	-
amd	ryzen_7_5825u_firmware	-
amd	ryzen_7_pro_3700u_firmware	-
amd	ryzen_9_3900_firmware	-
amd	ryzen_9_3900x_firmware	-
amd	ryzen_9_3900xt_firmware	-
amd	ryzen_9_3950x_firmware	-
amd	ryzen_9_5900_firmware	-
amd	ryzen_9_5900hs_firmware	-
amd	ryzen_9_5900hx_firmware	-
amd	ryzen_9_5900x_firmware	-
amd	ryzen_9_5950x_firmware	-
amd	ryzen_9_5980hs_firmware	-
amd	ryzen_9_5980hx_firmware	-
amd	ryzen_pro_3200g_firmware	-
amd	ryzen_pro_3200ge_firmware	-
amd	ryzen_pro_3350g_firmware	-
amd	ryzen_pro_3400g_firmware	-
amd	ryzen_pro_3400ge_firmware	-
amd	ryzen_pro_3600_firmware	-
amd	ryzen_pro_3700_firmware	-
amd	ryzen_pro_3900_firmware	-
amd	ryzen_pro_5350g_firmware	-
amd	ryzen_pro_5350ge_firmware	-
amd	ryzen_pro_5650g_firmware	-
amd	ryzen_pro_5650ge_firmware	-
amd	ryzen_pro_5750g_firmware	-
amd	ryzen_pro_5750ge_firmware	-

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-190 - Integer Overflow or Wraparound
The software performs a calculation that can produce an integer overflow or wraparound, when the logic assumes that the resulting value will always be larger than the original value. This can introduce other weaknesses when the calculation is used for resource management or execution control.

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-1031