AMD EPYC 4004
Moderate fix5 remedies
cpe:2.3:h:amd:epyc_7001:*:*:*:*:*:*:*, +5 more
Moderate fix5 remedies
AMD OverDrive Improper Input Validation Vulnerability Allowing Out-of-Bounds Read in System Management Mode
Vulnerability
Patched
A vulnerability has been identified in the AMD OverDrive System Management Mode (SMM) module, where improper input validation could enable a privileged attacker to perform an out-of-bounds read. This issue has the potential to result in a loss of confidentiality.
Impact
Exploitation of this vulnerability could lead to unauthorized out-of-bounds memory access, potentially allowing for the disclosure of sensitive information.
Remediation
Users are advised to update to the Platform Initialization (PI) firmware version embeddedAM5PI 1.0.0.4, which is available through AMD's Original Equipment Manufacturers (OEM).
Added: May 15, 2026, 2:50 AM
Updated: May 15, 2026, 2:50 AM
Vulnerability Rating
Custom Algorithm
spread
6.6impact
0.2exploitability
2.8remediation
7.7relevance
8.4threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.