"AMD Reveals EPYC Flaws"
AMD has revealed 50 new CVE-listed bugs, 23 of which are rated high, meaning they are rated between 7.0 and 8.9 on the Common Vulnerability Scoring System. The AMD Graphics Driver for Windows 10 contains 27 flaws, with 18 of them being rated high. The exploitation of these flaws could result in the escalation of privilege, denial of service (DoS), unauthorized execution of code, memory corruption, information disclosure, and the ability for an unprivileged user to drop malicious DLL files onto a system. All three generations of AMD's EPYC processors have 22 flaws, with four of them being rated high. One of these flaws allows a side effect of an integrated chipset option to be used by an attacker to bypass SPI ROM protections. Another one of the flaws exists in the AMD System Management Unit (SMU), which could allow a malicious user to manipulate mailbox entries, leading to arbitrary code execution. This article continues to discuss product vulnerabilities recently revealed by AMD and Intel.