{"dataType":"CVE_RECORD","dataVersion":"5.1","cveMetadata":{"cveId":"CVE-2021-46753","assignerOrgId":"b58fc414-a1e4-4f92-9d70-1add41838648","state":"PUBLISHED","assignerShortName":"AMD","dateReserved":"2022-03-31T16:50:27.867Z","datePublished":"2023-05-09T19:00:04.895Z","dateUpdated":"2025-01-28T15:41:07.173Z"},"containers":{"cna":{"affected":[{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Ryzen™ 2000 series Desktop Processors “Raven Ridge” AM4","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Ryzen™ 5000 Series Desktop processor with Radeon™ Graphics  “Cezanne” AM4","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Dali”/”Dali” ULP","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics   “Pollock”","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Ryzen™ 2000 Series Mobile Processors “Raven Ridge” FP5","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Ryzen™ 3000 Series Mobile processor, 2nd Gen AMD Ryzen™ Mobile Processors with Radeon™ Graphics “Picasso”","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics “Renoir” ","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne”","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Ryzen™ 5000 Series Mobile processors with Radeon™ Graphics “Cezanne”","vendor":"AMD","versions":[{"status":"affected","version":"various "}]},{"defaultStatus":"unaffected","packageName":"AGESA","platforms":["x86"],"product":"Ryzen™ 6000 Series Mobile Processors  \"Rembrandt\"","vendor":"AMD","versions":[{"status":"affected","version":"various "}]}],"datePublic":"2023-05-09T16:30:00.000Z","descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"Failure to validate the length fields of the ASP\n(AMD Secure Processor) sensor fusion hub headers may allow an attacker with a\nmalicious Uapp or ABL to map the ASP sensor fusion hub region and overwrite\ndata structures leading to a potential loss of confidentiality and integrity.\n\n\n\n<br>"}],"value":"Failure to validate the length fields of the ASP\n(AMD Secure Processor) sensor fusion hub headers may allow an attacker with a\nmalicious Uapp or ABL to map the ASP sensor fusion hub region and overwrite\ndata structures leading to a potential loss of confidentiality and integrity.\n\n\n\n\n"}],"providerMetadata":{"orgId":"b58fc414-a1e4-4f92-9d70-1add41838648","shortName":"AMD","dateUpdated":"2023-05-09T19:00:04.895Z"},"references":[{"tags":["vendor-advisory"],"url":"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4001"}],"source":{"advisory":"AMD-SB-4001","discovery":"UNKNOWN"},"x_generator":{"engine":"Vulnogram 0.1.0-dev"}},"adp":[{"providerMetadata":{"orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE","dateUpdated":"2024-08-04T05:17:41.736Z"},"title":"CVE Program Container","references":[{"tags":["vendor-advisory","x_transferred"],"url":"https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4001"}]},{"problemTypes":[{"descriptions":[{"type":"CWE","lang":"en","description":"CWE-noinfo Not enough information"}]}],"metrics":[{"cvssV3_1":{"scope":"UNCHANGED","version":"3.1","baseScore":9.1,"attackVector":"NETWORK","baseSeverity":"CRITICAL","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N","integrityImpact":"HIGH","userInteraction":"NONE","attackComplexity":"LOW","availabilityImpact":"NONE","privilegesRequired":"NONE","confidentialityImpact":"HIGH"}},{"other":{"type":"ssvc","content":{"timestamp":"2025-01-28T15:41:03.256357Z","id":"CVE-2021-46753","options":[{"Exploitation":"none"},{"Automatable":"yes"},{"Technical Impact":"total"}],"role":"CISA Coordinator","version":"2.0.3"}}}],"title":"CISA ADP Vulnrichment","providerMetadata":{"orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP","dateUpdated":"2025-01-28T15:41:07.173Z"}}]}}