Vulnerability-Lookup

CVE-2024-36343 (GCVE-0-2024-36343)

Vulnerability from cvelistv5 – Published: 2026-05-19 21:03 – Updated: 2026-05-20 13:46

Summary

Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of confidentiality or integrity.

Severity

4.6 (Medium)


                        
                          CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

CWE

CWE-124 - Buffer Underwrite ('Buffer Underflow')

Assigner

AMD

References

2 references

URL	Tags
https://www.amd.com/en/resources/product-security…
https://www.amd.com/en/resources/product-security…

Impacted products

19 products

Vendor	Product	Version
AMD	AMD EPYC™ 4004	Unaffected: ComboAM5PI 1.1.0.3d
AMD	AMD EPYC™ 4005	Unaffected: ComboAM5 1.2.0.3j
AMD	AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics	Unaffected: RembrandtPI-FP7_1.0.0.Bg
AMD	AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ Graphics	Unaffected: PhoenixPI-FP8-FP7_1.2.0.0f
AMD	AMD Ryzen™ 7045 Series Mobile Processors with Radeon™ Graphics	Unaffected: DragonRangeFL1_1.0.0.3l
AMD	AMD Ryzen™ 7000 Series Desktop Processors	Unaffected: ComboAM5-PI_1.0.0.e Unaffected: ComboAM5PI 1.1.0.3g Unaffected: ComboAM5 1.2.0.3j
AMD	AMD Ryzen™ 9000HX Series Mobile Processors	Unaffected: FireRangeFL1PI 1.0.0.0f
AMD	AMD Ryzen™ AI MAX	Unaffected: StrixHaloPI-FP11_1.0.0.2b
AMD	AMD Ryzen™ AI 300 Series Processors	Unaffected: StrixKrackanPI-FP8_1.1.0.0f Unaffected: StrixKrackanPI-FP8_1.1.0.2e
AMD	AMD Ryzen™ Threadripper™ 7000 Processors	Unaffected: StormPeakPI-SP6 1.1.0.0k
AMD	AMD Ryzen™ Threadripper™ PRO 7000 WX-Series Processors	Unaffected: StormPeakPI-SP6 1.0.0.1m Unaffected: StormPeakPI-SP6_1.1.0.0k
AMD	AMD Ryzen™ 8000 Series Desktop Processors	Unaffected: ComboAM5PI 1.1.0.3g
AMD	AMD Ryzen™ 8000 Series Desktop Processors	Unaffected: ComboAM5 1.2.0.3j
AMD	AMD Ryzen™ 9000 Series Desktop Processors	Unaffected: ComboAM5 1.2.0.3j
AMD	AMD Ryzen™ 9000 Series Desktop Processors	Unaffected: ComboAM5 1.2.0.3j
AMD	AMD Ryzen™ Embedded V3000 Series Processors	Unaffected: Embedded-PI_FP7r2 100F
AMD	AMD Ryzen™ Embedded 7000 Series Processors	Unaffected: EmbeddedAM5PI 1.0.0.5
AMD	AMD Ryzen™ Embedded 8000 Series Processors	Unaffected: EmbeddedPhoenixPI-FP7r2_1.0.0.4
AMD	AMD Ryzen™ Embedded 9000 Series Processors	Unaffected: EmbeddedAM5PI 1.0.0.7

Date Public

2026-05-19 21:02

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2024-36343",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2026-05-20T13:46:11.620172Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2026-05-20T13:46:23.737Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "affected",
          "product": "AMD EPYC\u2122 4004",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ComboAM5PI 1.1.0.3d"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD EPYC\u2122 4005",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ComboAM5 1.2.0.3j"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 6000 Series Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "RembrandtPI-FP7_1.0.0.Bg"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7040 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "PhoenixPI-FP8-FP7_1.2.0.0f"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7045 Series Mobile Processors with Radeon\u2122 Graphics",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "DragonRangeFL1_1.0.0.3l"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 7000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ComboAM5-PI_1.0.0.e"
            },
            {
              "status": "unaffected",
              "version": "ComboAM5PI 1.1.0.3g"
            },
            {
              "status": "unaffected",
              "version": "ComboAM5 1.2.0.3j"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 9000HX Series Mobile Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "FireRangeFL1PI 1.0.0.0f"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 AI MAX",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "StrixHaloPI-FP11_1.0.0.2b"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 AI 300 Series Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "StrixKrackanPI-FP8_1.1.0.0f"
            },
            {
              "status": "unaffected",
              "version": "StrixKrackanPI-FP8_1.1.0.2e"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 Threadripper\u2122 7000 Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "StormPeakPI-SP6 1.1.0.0k"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 Threadripper\u2122 PRO 7000 WX-Series Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "StormPeakPI-SP6 1.0.0.1m"
            },
            {
              "status": "unaffected",
              "version": "StormPeakPI-SP6_1.1.0.0k"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 8000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ComboAM5PI 1.1.0.3g"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 8000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ComboAM5 1.2.0.3j"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 9000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ComboAM5 1.2.0.3j"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 9000 Series Desktop Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "ComboAM5 1.2.0.3j"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 Embedded V3000 Series Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "Embedded-PI_FP7r2 100F"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 Embedded 7000 Series Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "EmbeddedAM5PI 1.0.0.5"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 Embedded 8000 Series Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "EmbeddedPhoenixPI-FP7r2_1.0.0.4"
            }
          ]
        },
        {
          "defaultStatus": "affected",
          "product": "AMD Ryzen\u2122 Embedded 9000 Series Processors",
          "vendor": "AMD",
          "versions": [
            {
              "status": "unaffected",
              "version": "EmbeddedAM5PI 1.0.0.7"
            }
          ]
        }
      ],
      "datePublic": "2026-05-19T21:02:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of confidentiality or integrity.\u003cbr\u003e"
            }
          ],
          "value": "Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of confidentiality or integrity."
        }
      ],
      "metrics": [
        {
          "cvssV4_0": {
            "Automatable": "NOT_DEFINED",
            "Recovery": "NOT_DEFINED",
            "Safety": "NOT_DEFINED",
            "attackComplexity": "LOW",
            "attackRequirements": "NONE",
            "attackVector": "LOCAL",
            "baseScore": 4.6,
            "baseSeverity": "MEDIUM",
            "exploitMaturity": "NOT_DEFINED",
            "privilegesRequired": "HIGH",
            "providerUrgency": "NOT_DEFINED",
            "subAvailabilityImpact": "NONE",
            "subConfidentialityImpact": "NONE",
            "subIntegrityImpact": "NONE",
            "userInteraction": "NONE",
            "valueDensity": "NOT_DEFINED",
            "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N",
            "version": "4.0",
            "vulnAvailabilityImpact": "NONE",
            "vulnConfidentialityImpact": "LOW",
            "vulnIntegrityImpact": "LOW",
            "vulnerabilityResponseEffort": "NOT_DEFINED"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-124",
              "description": "CWE-124  Buffer Underwrite (\u0027Buffer Underflow\u0027)",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-05-19T21:03:48.439Z",
        "orgId": "b58fc414-a1e4-4f92-9d70-1add41838648",
        "shortName": "AMD"
      },
      "references": [
        {
          "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3030.html"
        },
        {
          "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "x_generator": {
        "engine": "AMD PSIRT Automation 1.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "b58fc414-a1e4-4f92-9d70-1add41838648",
    "assignerShortName": "AMD",
    "cveId": "CVE-2024-36343",
    "datePublished": "2026-05-19T21:03:09.395Z",
    "dateReserved": "2024-05-23T19:44:47.200Z",
    "dateUpdated": "2026-05-20T13:46:23.737Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "epss": {
      "cve": "CVE-2024-36343",
      "date": "2026-05-29",
      "epss": "7e-05",
      "percentile": "0.00504"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2024-36343\",\"sourceIdentifier\":\"psirt@amd.com\",\"published\":\"2026-05-19T22:16:35.420\",\"lastModified\":\"2026-05-20T14:04:24.967\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of confidentiality or integrity.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"psirt@amd.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":4.6,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"LOW\",\"vulnAvailabilityImpact\":\"NONE\",\"subConfidentialityImpact\":\"NONE\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"psirt@amd.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-124\"}]}],\"references\":[{\"url\":\"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3030.html\",\"source\":\"psirt@amd.com\"},{\"url\":\"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html\",\"source\":\"psirt@amd.com\"}]}}",
    "vulnrichment": {
      "containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2024-36343\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2026-05-20T13:46:11.620172Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2026-05-20T13:46:18.360Z\"}}], \"cna\": {\"source\": {\"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 4.6, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"valueDensity\": \"NOT_DEFINED\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N\", \"exploitMaturity\": \"NOT_DEFINED\", \"providerUrgency\": \"NOT_DEFINED\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"HIGH\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"LOW\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"NONE\", \"subConfidentialityImpact\": \"NONE\", \"vulnConfidentialityImpact\": \"LOW\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"AMD\", \"product\": \"AMD EPYC\\u2122 4004\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM5PI 1.1.0.3d\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD EPYC\\u2122 4005\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM5 1.2.0.3j\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 6000 Series Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"RembrandtPI-FP7_1.0.0.Bg\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7040 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"PhoenixPI-FP8-FP7_1.2.0.0f\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7045 Series Mobile Processors with Radeon\\u2122 Graphics\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"DragonRangeFL1_1.0.0.3l\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 7000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM5-PI_1.0.0.e\"}, {\"status\": \"unaffected\", \"version\": \"ComboAM5PI 1.1.0.3g\"}, {\"status\": \"unaffected\", \"version\": \"ComboAM5 1.2.0.3j\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 9000HX Series Mobile Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"FireRangeFL1PI 1.0.0.0f\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 AI MAX\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"StrixHaloPI-FP11_1.0.0.2b\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 AI 300 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"StrixKrackanPI-FP8_1.1.0.0f\"}, {\"status\": \"unaffected\", \"version\": \"StrixKrackanPI-FP8_1.1.0.2e\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Threadripper\\u2122 7000 Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"StormPeakPI-SP6 1.1.0.0k\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Threadripper\\u2122 PRO 7000 WX-Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"StormPeakPI-SP6 1.0.0.1m\"}, {\"status\": \"unaffected\", \"version\": \"StormPeakPI-SP6_1.1.0.0k\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 8000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM5PI 1.1.0.3g\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 8000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM5 1.2.0.3j\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 9000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM5 1.2.0.3j\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 9000 Series Desktop Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"ComboAM5 1.2.0.3j\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Embedded V3000 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"Embedded-PI_FP7r2 100F\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Embedded 7000 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"EmbeddedAM5PI 1.0.0.5\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Embedded 8000 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"EmbeddedPhoenixPI-FP7r2_1.0.0.4\"}], \"defaultStatus\": \"affected\"}, {\"vendor\": \"AMD\", \"product\": \"AMD Ryzen\\u2122 Embedded 9000 Series Processors\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"EmbeddedAM5PI 1.0.0.7\"}], \"defaultStatus\": \"affected\"}], \"datePublic\": \"2026-05-19T21:02:00.000Z\", \"references\": [{\"url\": \"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3030.html\"}, {\"url\": \"https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html\"}], \"x_generator\": {\"engine\": \"AMD PSIRT Automation 1.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of confidentiality or integrity.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of confidentiality or integrity.\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-124\", \"description\": \"CWE-124  Buffer Underwrite (\u0027Buffer Underflow\u0027)\"}]}], \"providerMetadata\": {\"orgId\": \"b58fc414-a1e4-4f92-9d70-1add41838648\", \"shortName\": \"AMD\", \"dateUpdated\": \"2026-05-19T21:03:48.439Z\"}}}",
      "cveMetadata": "{\"cveId\": \"CVE-2024-36343\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-05-20T13:46:23.737Z\", \"dateReserved\": \"2024-05-23T19:44:47.200Z\", \"assignerOrgId\": \"b58fc414-a1e4-4f92-9d70-1add41838648\", \"datePublished\": \"2026-05-19T21:03:09.395Z\", \"assignerShortName\": \"AMD\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.2"
    }
  }
}

FKIE_CVE-2024-36343

Vulnerability from fkie_nvd - Published: 2026-05-19 22:16 - Updated: 2026-05-20 14:04

Severity

4.6 (Medium) - CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Summary

References

	URL	Tags
	psirt@amd.com	https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3030.html
	psirt@amd.com	https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of confidentiality or integrity."
    }
  ],
  "id": "CVE-2024-36343",
  "lastModified": "2026-05-20T14:04:24.967",
  "metrics": {
    "cvssMetricV40": [
      {
        "cvssData": {
          "Automatable": "NOT_DEFINED",
          "Recovery": "NOT_DEFINED",
          "Safety": "NOT_DEFINED",
          "attackComplexity": "LOW",
          "attackRequirements": "NONE",
          "attackVector": "LOCAL",
          "availabilityRequirement": "NOT_DEFINED",
          "baseScore": 4.6,
          "baseSeverity": "MEDIUM",
          "confidentialityRequirement": "NOT_DEFINED",
          "exploitMaturity": "NOT_DEFINED",
          "integrityRequirement": "NOT_DEFINED",
          "modifiedAttackComplexity": "NOT_DEFINED",
          "modifiedAttackRequirements": "NOT_DEFINED",
          "modifiedAttackVector": "NOT_DEFINED",
          "modifiedPrivilegesRequired": "NOT_DEFINED",
          "modifiedSubAvailabilityImpact": "NOT_DEFINED",
          "modifiedSubConfidentialityImpact": "NOT_DEFINED",
          "modifiedSubIntegrityImpact": "NOT_DEFINED",
          "modifiedUserInteraction": "NOT_DEFINED",
          "modifiedVulnAvailabilityImpact": "NOT_DEFINED",
          "modifiedVulnConfidentialityImpact": "NOT_DEFINED",
          "modifiedVulnIntegrityImpact": "NOT_DEFINED",
          "privilegesRequired": "HIGH",
          "providerUrgency": "NOT_DEFINED",
          "subAvailabilityImpact": "NONE",
          "subConfidentialityImpact": "NONE",
          "subIntegrityImpact": "NONE",
          "userInteraction": "NONE",
          "valueDensity": "NOT_DEFINED",
          "vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
          "version": "4.0",
          "vulnAvailabilityImpact": "NONE",
          "vulnConfidentialityImpact": "LOW",
          "vulnIntegrityImpact": "LOW",
          "vulnerabilityResponseEffort": "NOT_DEFINED"
        },
        "source": "psirt@amd.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-05-19T22:16:35.420",
  "references": [
    {
      "source": "psirt@amd.com",
      "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3030.html"
    },
    {
      "source": "psirt@amd.com",
      "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html"
    }
  ],
  "sourceIdentifier": "psirt@amd.com",
  "vulnStatus": "Awaiting Analysis",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-124"
        }
      ],
      "source": "psirt@amd.com",
      "type": "Secondary"
    }
  ]
}

GHSA-QJGC-HX5R-R632

Vulnerability from github – Published: 2026-05-20 00:31 – Updated: 2026-05-20 00:31

Details

Severity

4.6 (Medium)


                  
                    CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2024-36343"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-124"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-05-19T22:16:35Z",
    "severity": "MODERATE"
  },
  "details": "Improper input validation in the System Management Mode (SMM) communications buffer could allow a privileged attacker to perform an out of bounds read or write to a limited section of the Top of Memory Segment (TSEG) memory region, potentially resulting in loss of confidentiality or integrity.",
  "id": "GHSA-qjgc-hx5r-r632",
  "modified": "2026-05-20T00:31:41Z",
  "published": "2026-05-20T00:31:41Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2024-36343"
    },
    {
      "type": "WEB",
      "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3030.html"
    },
    {
      "type": "WEB",
      "url": "https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4017.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
      "type": "CVSS_V4"
    }
  ]
}

WID-SEC-W-2026-1482

Vulnerability from csaf_certbund - Published: 2026-05-12 22:00 - Updated: 2026-05-27 22:00

Summary

AMD Prozessor: Mehrere Schwachstellen

Severity

Hoch

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung: Prozessoren sind die zentralen Rechenwerke eines Computers.

Angriff: Ein Angreifer kann mehrere Schwachstellen in AMD Prozessor ausnutzen, um seine Privilegien zu erhöhen, beliebigen Code auszuführen – sogar mit Administratorrechten –, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand herbeizuführen.

Betroffene Betriebssysteme: - Sonstiges

CVE-2021-26380

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2021-46747

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2022-23826

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2023-20539

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2023-31316

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2024-14012

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2024-36315

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2024-36343

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2024-36345

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-0028

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-0040

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-0045

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-29935

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-29936

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-29937

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-29938

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-29944

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-48512

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-48513

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-48516

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-48519

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-48520

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-48521

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-52540

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2026-0432

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2026-0438

Affected products

Known affected 14 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
AMD Prozessor Instinct MI300A AMD / Prozessor	`cpe:/h:amd:amd_processor:instinct_mi300a`	Instinct MI300A
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

CVE-2025-54518

Affected products

Known affected 12 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
HP Computer HP	`cpe:/h:hp:computer:-`	—
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine

CVE-2024-21962

Affected products

Known affected 13 products

Product	Identifier	Version
Dell Computer Dell	`cpe:/o:dell:dell_computer:-`	—
Lenovo Computer Lenovo	`cpe:/h:lenovo:computer:-`	—
HP Computer HP	`cpe:/h:hp:computer:-`	—
AMD Prozessor Athlon AMD / Prozessor	`cpe:/h:amd:amd_processor:athlon`	Athlon
Dell PowerEdge Dell	`cpe:/h:dell:poweredge:-`	—
AMD Prozessor EPYC AMD / Prozessor	`cpe:/h:amd:amd_processor:epyc`	EPYC
Open Source Xen 4.17-4.21 Open Source / Xen	`cpe:/o:xen:xen:4.17_-_4.21`	4.17-4.21
Google Cloud Platform Google / Cloud Platform	`cpe:/a:google:cloud_platform:-`	—
Fedora Linux Fedora	`cpe:/o:fedoraproject:fedora:-`	—
AMD Prozessor Ryzen AMD / Prozessor	`cpe:/h:amd:amd_processor:ryzen`	Ryzen
Google Cloud Platform Compute Engine Google / Cloud Platform	`cpe:/a:google:cloud_platform:compute_engine`	Compute Engine
SUSE Linux SUSE	`cpe:/o:suse:suse_linux:-`	—
SUSE openSUSE SUSE	`cpe:/o:suse:opensuse:-`	—

References

45 references

URL	Category
https://wid.cert-bund.de/.well-known/csaf/white/2…	self
https://wid.cert-bund.de/portal/wid/securityadvis…	self
https://www.amd.com/en/resources/product-security…	external
https://www.amd.com/en/resources/product-security…	external
https://www.amd.com/en/resources/product-security…	external
https://www.amd.com/en/resources/product-security…	external
https://www.amd.com/en/resources/product-security…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://bodhi.fedoraproject.org/updates/FEDORA-20…	external
https://support.lenovo.com/us/en/product_security…	external
https://support.lenovo.com/us/en/product_security…	external
https://www.dell.com/support/kbdoc/de-de/00046406…	external
https://www.dell.com/support/kbdoc/de-de/00046407…	external
https://xenbits.xen.org/xsa/advisory-490.html	external
https://docs.cloud.google.com/support/bulletins#g…	external
https://support.lenovo.com/us/en/product_security…	external
https://support.lenovo.com/us/en/product_security…	external
https://docs.cloud.google.com/support/bulletins#g…	external
https://support.lenovo.com/us/en/product_security…	external
https://www.dell.com/support/kbdoc/000422878	external
https://www.dell.com/support/kbdoc/000420412	external
https://www.dell.com/support/kbdoc/000423273	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.opensuse.org/archives/list/security…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://support.hp.com/us-en/document/ish_1493487…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://www.dell.com/support/kbdoc/000469673	external
https://lists.suse.com/pipermail/sle-security-upd…	external
https://lists.suse.com/pipermail/sle-security-upd…	external

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Prozessoren sind die zentralen Rechenwerke eines Computers.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer kann mehrere Schwachstellen in AMD Prozessor ausnutzen, um seine Privilegien zu erh\u00f6hen, beliebigen Code auszuf\u00fchren \u2013 sogar mit Administratorrechten \u2013, Daten zu manipulieren, vertrauliche Informationen offenzulegen oder einen Denial-of-Service-Zustand herbeizuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Sonstiges",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2026-1482 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2026/wid-sec-w-2026-1482.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2026-1482 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2026-1482"
      },
      {
        "category": "external",
        "summary": "AMD Security Bulletin amd-sb-3047 vom 2026-05-12",
        "url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3047.html"
      },
      {
        "category": "external",
        "summary": "AMD Security Bulletin amd-sb-4015 vom 2026-05-12",
        "url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-4015.html"
      },
      {
        "category": "external",
        "summary": "AMD Security Bulletin amd-sb-4016 vom 2026-05-12",
        "url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-4016.html"
      },
      {
        "category": "external",
        "summary": "AMD Security Bulletin amd-sb-4017 vom 2026-05-12",
        "url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-4017.html"
      },
      {
        "category": "external",
        "summary": "AMD Security Bulletin amd-sb-7052 vom 2026-05-12",
        "url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7052.html"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-8B2957222F vom 2026-05-12",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-8b2957222f"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2026-7B2B7837B6 vom 2026-05-13",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2026-7b2b7837b6"
      },
      {
        "category": "external",
        "summary": "Lenovo Security Advisory LEN-216977 vom 2026-05-13",
        "url": "https://support.lenovo.com/us/en/product_security/LEN-216977"
      },
      {
        "category": "external",
        "summary": "Lenovo Security Advisory LEN-201020 vom 2026-05-13",
        "url": "https://support.lenovo.com/us/en/product_security/LEN-201020"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2026-076 vom 2026-05-12",
        "url": "https://www.dell.com/support/kbdoc/de-de/000464069/dsa-2026-076-security-update-for-dell-amd-based-poweredge-server-vulnerability"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2026-216 vom 2026-05-12",
        "url": "https://www.dell.com/support/kbdoc/de-de/000464072/dsa-2026-216-security-update-for-dell-amd-based-graphics-driver-vulnerabilities"
      },
      {
        "category": "external",
        "summary": "XEN Security Advisory XSA-490 vom 2026-05-12",
        "url": "https://xenbits.xen.org/xsa/advisory-490.html"
      },
      {
        "category": "external",
        "summary": "Google Cloud Platform Security Bulletin GCP-2026-031 vom 2026-05-12",
        "url": "https://docs.cloud.google.com/support/bulletins#gcp-2026-031"
      },
      {
        "category": "external",
        "summary": "Lenovo Security Advisory LEN-212210 vom 2026-05-13",
        "url": "https://support.lenovo.com/us/en/product_security/LEN-212210"
      },
      {
        "category": "external",
        "summary": "Lenovo Security Advisory LEN-216980 vom 2026-05-13",
        "url": "https://support.lenovo.com/us/en/product_security/LEN-216980"
      },
      {
        "category": "external",
        "summary": "Google Cloud Platform Security Bulletin GCP-2026-032 vom 2026-05-12",
        "url": "https://docs.cloud.google.com/support/bulletins#gcp-2026-032"
      },
      {
        "category": "external",
        "summary": "Lenovo Security Advisory LEN-212212 vom 2026-05-13",
        "url": "https://support.lenovo.com/us/en/product_security/LEN-212212"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2026-071 vom 2026-05-14",
        "url": "https://www.dell.com/support/kbdoc/000422878"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2026-069 vom 2026-05-14",
        "url": "https://www.dell.com/support/kbdoc/000420412"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2026-073 vom 2026-05-14",
        "url": "https://www.dell.com/support/kbdoc/000423273"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1899-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026090.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1908-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026085.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1900-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026089.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1907-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026086.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1909-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026084.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1904-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026087.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1933-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026122.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:10800-1 vom 2026-05-18",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/LTYBNVD3KUVGLNT5HC3PUZSZZB7B4OO2/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1959-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026125.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:1978-1 vom 2026-05-18",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026140.html"
      },
      {
        "category": "external",
        "summary": "openSUSE Security Update OPENSUSE-SU-2026:20758-1 vom 2026-05-19",
        "url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/45QOQVK3DW34MAWEZNOXGCLMB4HJZVDJ/"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21673-1 vom 2026-05-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026162.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21646-1 vom 2026-05-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026189.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21645-1 vom 2026-05-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026190.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21684-1 vom 2026-05-19",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026154.html"
      },
      {
        "category": "external",
        "summary": "HP Security Bulletin HPSBHF04121 vom 2026-05-15",
        "url": "https://support.hp.com/us-en/document/ish_14934878-14934908-16/HPSBHF04121"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21718-1 vom 2026-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026207.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21689-1 vom 2026-05-21",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026236.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21749-1 vom 2026-05-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026308.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:2066-1 vom 2026-05-26",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026281.html"
      },
      {
        "category": "external",
        "summary": "Dell Security Advisory DSA-2026-232 vom 2026-05-27",
        "url": "https://www.dell.com/support/kbdoc/000469673"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21800-1 vom 2026-05-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026344.html"
      },
      {
        "category": "external",
        "summary": "SUSE Security Update SUSE-SU-2026:21782-1 vom 2026-05-27",
        "url": "https://lists.suse.com/pipermail/sle-security-updates/2026-May/026357.html"
      }
    ],
    "source_lang": "en-US",
    "title": "AMD Prozessor: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2026-05-27T22:00:00.000+00:00",
      "generator": {
        "date": "2026-05-28T07:28:36.394+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.6.0"
        }
      },
      "id": "WID-SEC-W-2026-1482",
      "initial_release_date": "2026-05-12T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2026-05-12T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2026-05-14T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von European Union Vulnerability Database und Dell aufgenommen"
        },
        {
          "date": "2026-05-17T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-05-18T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von SUSE und openSUSE aufgenommen"
        },
        {
          "date": "2026-05-19T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von European Union Vulnerability Database, SUSE und HP aufgenommen"
        },
        {
          "date": "2026-05-21T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von SUSE aufgenommen"
        },
        {
          "date": "2026-05-26T22:00:00.000+00:00",
          "number": "7",
          "summary": "Neue Updates von SUSE und Dell aufgenommen"
        },
        {
          "date": "2026-05-27T22:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von SUSE aufgenommen"
        }
      ],
      "status": "final",
      "version": "8"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "EPYC",
                "product": {
                  "name": "AMD Prozessor EPYC",
                  "product_id": "T053890",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:amd:amd_processor:epyc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Instinct MI300A",
                "product": {
                  "name": "AMD Prozessor Instinct MI300A",
                  "product_id": "T053891",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:amd:amd_processor:instinct_mi300a"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Athlon",
                "product": {
                  "name": "AMD Prozessor Athlon",
                  "product_id": "T053892",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:amd:amd_processor:athlon"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Ryzen",
                "product": {
                  "name": "AMD Prozessor Ryzen",
                  "product_id": "T053893",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:amd:amd_processor:ryzen"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Prozessor"
          }
        ],
        "category": "vendor",
        "name": "AMD"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Dell Computer",
            "product": {
              "name": "Dell Computer",
              "product_id": "T006498",
              "product_identification_helper": {
                "cpe": "cpe:/o:dell:dell_computer:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Dell PowerEdge",
            "product": {
              "name": "Dell PowerEdge",
              "product_id": "T033533",
              "product_identification_helper": {
                "cpe": "cpe:/h:dell:poweredge:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Dell"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Google Cloud Platform",
                "product": {
                  "name": "Google Cloud Platform",
                  "product_id": "393401",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:google:cloud_platform:-"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "Compute Engine",
                "product": {
                  "name": "Google Cloud Platform Compute Engine",
                  "product_id": "T050012",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:google:cloud_platform:compute_engine"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Cloud Platform"
          }
        ],
        "category": "vendor",
        "name": "Google"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "HP Computer",
            "product": {
              "name": "HP Computer",
              "product_id": "T031288",
              "product_identification_helper": {
                "cpe": "cpe:/h:hp:computer:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HP"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Lenovo Computer",
            "product": {
              "name": "Lenovo Computer",
              "product_id": "T036869",
              "product_identification_helper": {
                "cpe": "cpe:/h:lenovo:computer:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Lenovo"
      },
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "4.17-4.21",
                "product": {
                  "name": "Open Source Xen 4.17-4.21",
                  "product_id": "T053900",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:xen:xen:4.17_-_4.21"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Xen"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "SUSE Linux",
            "product": {
              "name": "SUSE Linux",
              "product_id": "T002207",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:suse_linux:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "SUSE openSUSE",
            "product": {
              "name": "SUSE openSUSE",
              "product_id": "T027843",
              "product_identification_helper": {
                "cpe": "cpe:/o:suse:opensuse:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "SUSE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-26380",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2021-26380"
    },
    {
      "cve": "CVE-2021-46747",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2021-46747"
    },
    {
      "cve": "CVE-2022-23826",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2022-23826"
    },
    {
      "cve": "CVE-2023-20539",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2023-20539"
    },
    {
      "cve": "CVE-2023-31316",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2023-31316"
    },
    {
      "cve": "CVE-2024-14012",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2024-14012"
    },
    {
      "cve": "CVE-2024-36315",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2024-36315"
    },
    {
      "cve": "CVE-2024-36343",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2024-36343"
    },
    {
      "cve": "CVE-2024-36345",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2024-36345"
    },
    {
      "cve": "CVE-2025-0028",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-0028"
    },
    {
      "cve": "CVE-2025-0040",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-0040"
    },
    {
      "cve": "CVE-2025-0045",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-0045"
    },
    {
      "cve": "CVE-2025-29935",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-29935"
    },
    {
      "cve": "CVE-2025-29936",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-29936"
    },
    {
      "cve": "CVE-2025-29937",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-29937"
    },
    {
      "cve": "CVE-2025-29938",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-29938"
    },
    {
      "cve": "CVE-2025-29944",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-29944"
    },
    {
      "cve": "CVE-2025-48512",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-48512"
    },
    {
      "cve": "CVE-2025-48513",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-48513"
    },
    {
      "cve": "CVE-2025-48516",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-48516"
    },
    {
      "cve": "CVE-2025-48519",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-48519"
    },
    {
      "cve": "CVE-2025-48520",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-48520"
    },
    {
      "cve": "CVE-2025-48521",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-48521"
    },
    {
      "cve": "CVE-2025-52540",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-52540"
    },
    {
      "cve": "CVE-2026-0432",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2026-0432"
    },
    {
      "cve": "CVE-2026-0438",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T053891",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2026-0438"
    },
    {
      "cve": "CVE-2025-54518",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T031288",
          "T033533",
          "T053890",
          "T002207",
          "T027843",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2025-54518"
    },
    {
      "cve": "CVE-2024-21962",
      "product_status": {
        "known_affected": [
          "T006498",
          "T036869",
          "T031288",
          "T053892",
          "T033533",
          "T053890",
          "T053900",
          "393401",
          "74185",
          "T053893",
          "T050012",
          "T002207",
          "T027843"
        ]
      },
      "release_date": "2026-05-12T22:00:00.000+00:00",
      "title": "CVE-2024-21962"
    }
  ]
}

Sightings

Author	Source	Type	Date	Other

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2024-36343 (GCVE-0-2024-36343)

FKIE_CVE-2024-36343

GHSA-QJGC-HX5R-R632

WID-SEC-W-2026-1482

Tags

Sightings

Nomenclature