CVE-2024-21970 | AMD Ryzen Threadripper 3000 Processors Power Management Firmware array index

A vulnerability was found in AMD Ryzen Threadripper 3000 Processors, Ryzen Threadripper PRO 5000 WX-Series Processors, Ryzen Threadripper PRO 3000 WX-Series Processors, Athlon 3000 Mobile Processors with Radeon Graphics, Renoir Cezanne Raven Ridge Raven Ridge 2 Picasso Summit Pinnacle Ridge Matisse Vermeer, Athlon 3000 Desktop Processors with Radeon Graphics, Ryzen 8000 Desktop Processors, Ryzen 4000 Mobile Processors with Radeon Graphics, Ryzen 6000 Processors with Radeon Graphics, Ryzen 7020 Processors with Radeon Graphics, Ryzen 7045 Mobile Processors with Radeon Graphics, Ryzen 7035 Processors with Radeon Graphics, Ryzen 7000 Desktop Processors, Ryzen 7030 Mobile Processors with Radeon Graphics, Ryzen 5000 Mobile Processors with Radeon Graphics, Ryzen 3000 Mobile Processors with Radeon Graphics, Ryzen 3000 Desktop Processors, Ryzen 5000 Desktop Processors, Ryzen Embedded R1000 Processors, Ryzen Embedded R2000 Processors, Ryzen Embedded 7000 Processors, Ryzen Embedded 5000 Processors, Ryzen Embedded V1000 Processors, Ryzen Embedded V2000 Processors and Ryzen Embedded V3000 Processors. It has been classified as problematic. The affected element is an unknown function of the component Power Management Firmware. This manipulation causes improper validation of array index.

The identification of this vulnerability is CVE-2024-21970. The attack can only be executed locally. There is no exploit available.

Upgrading the affected component is recommended.VulDB Recent EntriesRead More