CVE-2024-21981

CVSS 3.1 Score 5.7 of 10 (medium)

Details

Published Aug 13, 2024
Updated: Aug 15, 2024
CWE ID 639

Summary

CVE-2024-21981 is a vulnerability affecting AMD Secure Processor (ASP). An attacker with local access and arbitrary code execution privilege in ASP can exploit the improper key usage control in this system. Successful exploitation could result in the extraction of ASP cryptographic keys, potentially leading to significant confidentiality and integrity issues. This vulnerability poses a risk to the security of data processed by AMD Secure Processors.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share