Insufficient granularity of access control in ASP (AMD Secure Processor) may allow an attacker with an untrusted user space application to map sensitive SMN (System Management Network) apertures leading to a potential escalation of privileges.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | |||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|
| AMD | AMD Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics | affected |
|
|||||||||
| AMD | AMD Ryzen™ Threadripper™ PRO 3000 WX-Series Processors | affected |
|
|||||||||
| AMD | AMD Ryzen™ 5000 Series Desktop Processors with Radeon™ Graphics | affected |
|
|||||||||
| AMD | AMD Ryzen™ Threadripper™ PRO 5000 WX-Series Processors | affected |
|
|||||||||
| AMD | AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics | affected |
|
|||||||||
| AMD | AMD Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics | affected |
|
|||||||||
| AMD | AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics | affected |
|
|||||||||
| AMD | AMD Ryzen™ 3000 Series Desktop Processors | affected |
|
|||||||||
| AMD | AMD Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics | affected |
|
|||||||||
| AMD | AMD Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics | affected |
|
|||||||||
| AMD | AMD Ryzen™ 4000 Series Desktop Processors | affected |
|
|||||||||
| AMD | AMD Ryzen™ 5000 Series Desktop Processors | affected |
|
|||||||||
| AMD | AMD Ryzen™ Embedded R1000 Series Processors | affected |
|
|||||||||
| AMD | AMD Ryzen™ Embedded R2000 Series Processors | affected |
|
|||||||||
| AMD | AMD Ryzen™ Embedded 5000 Series Processors | affected |
|
|||||||||
| AMD | AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Raven Ridge") | affected |
|
|||||||||
| AMD | AMD Ryzen™ Embedded V1000 Series Processors (formerly codenamed "Picasso") | affected |
|
|||||||||
| AMD | AMD Ryzen™ Embedded V2000 Series Processors | affected |
|
|||||||||
| AMD | AMD Ryzen™ Embedded V3000 Series Processors | affected |
|
|||||||||
| AMD | AMD Radeon™ RX 5000 Series Graphics Products | affected |
|
|||||||||
| AMD | AMD Radeon™ PRO W5000 Series Graphics Products | affected |
|
|||||||||
| AMD | AMD Radeon™ RX 6000 Series Graphics Products | affected |
|
|||||||||
| AMD | AMD Radeon™ RX 7000 Series Graphics Products | affected |
|
|||||||||
| AMD | AMD Radeon™ PRO W6000 Series Graphics Products | affected |
|
|||||||||
| AMD | AMD Radeon™ PRO W7000 Series Graphics Products | affected |
|
|||||||||
| AMD | AMD Radeon™ PRO V520 | affected |
|
|||||||||
| AMD | AMD Radeon™ PRO V620 | affected |
|
No data.
No data.
OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.
No data.
Project Subscriptions
No data.
Advisories
No advisories yet.
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Mon, 01 Jun 2026 21:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | Privilege Escalation via Weak SMN Access Control in AMD Secure Processor |
Mon, 01 Jun 2026 20:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Insufficient granularity of access control in ASP (AMD Secure Processor) may allow an attacker with an untrusted user space application to map sensitive SMN (System Management Network) apertures leading to a potential escalation of privileges. | |
| Weaknesses | CWE-1220 | |
| References |
| |
| Metrics |
cvssV4_0
|
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: AMD
Published:
Updated: 2026-06-01T19:01:27.968Z
Reserved: 2022-03-31T16:50:27.864Z
Link: CVE-2021-46747
Vulnrichment
No data.
NVD
Status : Received
Published: 2026-06-01T21:16:23.103
Modified: 2026-06-01T21:16:23.103
Link: CVE-2021-46747
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-06-01T21:30:26Z
Weaknesses