Input validation

2023-09-2018:15:00

PRIOn knowledge base

www.prio-n.com

initialization

dxe driver

information leakage

local access

5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.

CPENameOperatorVersion
ryzen_3100_firmwareeqcomboam4pi-1.0.0.9
ryzen_3100_firmwareeqcomboam4v2pi-1.2.0.8
ryzen_3300x_firmwareeqcomboam4pi-1.0.0.9
ryzen_3300x_firmwareeqcomboam4v2pi-1.2.0.8
ryzen_3500_firmwareeqcomboam4pi-1.0.0.9
ryzen_3500_firmwareeqcomboam4v2pi-1.2.0.8
ryzen_3500x_firmwareeqcomboam4pi-1.0.0.9
ryzen_3500x_firmwareeqcomboam4v2pi-1.2.0.8
ryzen_3600_firmwareeqcomboam4pi-1.0.0.9
ryzen_3600_firmwareeqcomboam4v2pi-1.2.0.8

Name	Operator	Version
ryzen_3100_firmware	eq	comboam4pi-1.0.0.9
ryzen_3100_firmware	eq	comboam4v2pi-1.2.0.8
ryzen_3300x_firmware	eq	comboam4pi-1.0.0.9
ryzen_3300x_firmware	eq	comboam4v2pi-1.2.0.8
ryzen_3500_firmware	eq	comboam4pi-1.0.0.9
ryzen_3500_firmware	eq	comboam4v2pi-1.2.0.8
ryzen_3500x_firmware	eq	comboam4pi-1.0.0.9
ryzen_3500x_firmware	eq	comboam4v2pi-1.2.0.8
ryzen_3600_firmware	eq	comboam4pi-1.0.0.9
ryzen_3600_firmware	eq	comboam4v2pi-1.2.0.8