CVE-2021-26381
Awaiting Analysis Awaiting Analysis - Queue

BaseFortify

Vulnerability report for CVE-2021-26381, including description, CVSS score, EPSS score, affected products, exploitability, helpful resources, and attack-flow context.

Publication date: 2026-02-10

Last updated on: 2026-02-10

Assigner: Advanced Micro Devices Inc.

Description

Improper system call parameter validation in the Trusted OS may allow a malicious driver to perform mapping or unmapping operations on a large number of pages, potentially resulting in kernel memory corruption.

CVSS Scores

EPSS Scores

Probability:
Percentile:

Meta Information

Published
2026-02-10
Last Modified
2026-02-10
Generated
2026-07-07
AI Q&A
2026-02-10
EPSS Evaluated
2026-07-05
NVD
EUVD

Affected Vendors & Products

Showing 6 associated CPEs
Vendor Product Version / Range
amd amd_secure_processor to 25.10.10 (inc)
amd radeon_software_for_linux to 25.10.1 (inc)
amd amd_athlon *
amd amd_ryzen *
amd radeon_pro *
amd radeon_rx *

Helpful Resources

Exploitability

CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-770 The product allocates a reusable resource or group of resources on behalf of an actor without imposing any intended restrictions on the size or number of resources that can be allocated.

Attack-Flow Graph

AI Quick Actions

Instant insights powered by AI
Executive Summary

This vulnerability involves improper validation of system call parameters in the Trusted OS. A malicious driver could exploit this flaw to perform mapping or unmapping operations on a large number of memory pages.

Such actions may lead to kernel memory corruption, which can compromise the stability and security of the operating system.

Impact Analysis

Exploitation of this vulnerability can result in kernel memory corruption, potentially causing system instability, crashes, or allowing malicious code to execute with elevated privileges.

This could lead to unauthorized access or control over the affected system, impacting its confidentiality, integrity, and availability.

Compliance Impact

I don't know

Detection Guidance

I don't know

Mitigation Strategies

I don't know

Chat Assistant

Ask questions about this CVE
Hi! I’m here to help you understand CVE-2021-26381. Ask me anything about the vulnerability, its impact, or mitigation strategies.
0/70

EPSS Chart