Cyber Resilience

CVE-2021-46753

Critical

Published: 09 May 2023

Published
09 May 2023
Modified
28 January 2025
KEV Added
Patch
CVSS Score v3.1 9.1 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
EPSS Score 0.0040 61.1th percentile
Risk Priority 18 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2021-46753 is a critical-severity an unspecified weakness vulnerability in Amd Ryzen 3100 Firmware. Its CVSS base score is 9.1 (Critical).

Operationally, ranked in the top 38.9% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

Failure to validate the length fields of the ASP (AMD Secure Processor) sensor fusion hub headers may allow an attacker with a malicious Uapp or ABL to map the ASP sensor fusion hub region and overwrite data structures leading to…

more

a potential loss of confidentiality and integrity.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

amd
ryzen 6600h firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6600hs firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6600u firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6800h firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6800hs firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6800u firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6900hs firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6900hx firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6980hs firmware
rembrandtpi-fp7_1.0.0.5
amd
ryzen 6980hx firmware
rembrandtpi-fp7_1.0.0.5
+56 more product configuration(s) — see NVD for full list

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References