CVE-2021-26410

CVSS 1.8 LOWEPSS 0.1%CWE-822

Vexday Risk Score

8Baixo

Decisão SSVC (CISA)

Track

Sem sinal de exploração → monitorar

CVSS 1.8EPSS 0.1%KEV nãoPoC —Nuclei —Metasploit —Patch —

Ciclo de vida

10 fev 2026Publicada no NVD

Recomendação: Monitorar — sem sinal de exploração no momento.

Improper syscall input validation in ASP (AMD Secure Processor) may force the kernel into reading syscall parameter values from its own memory space allowing an attacker to infer the contents of the kernel memory leading to potential information disclosure.

CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Produtos afetados

AMD · AMD Radeon™ PRO V520 AMD · AMD Radeon™ PRO V620 AMD · AMD Radeon™ PRO W5000 Series Graphics Products AMD · AMD Radeon™ PRO W6000 Series Graphics Products AMD · AMD Radeon™ RX 5000 Series Graphics Products AMD · AMD Radeon™ RX 6000 Series Graphics Products AMD · AMD Ryzen™ 4000 Series Desktop Processors AMD · AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics AMD · AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics AMD · AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics AMD · AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics AMD · AMD Ryzen™ Embedded R1000 Series Processors AMD · AMD Ryzen™ Embedded R2000 Series Processors AMD · AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso")AMD · AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge")AMD · AMD Ryzen™ Embedded V2000 Series Processors AMD · AMD Ryzen™ Embedded V3000 Series Processors

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4013.html https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6024.html