QwikSec

Security Database

CVE

CWE

Training

CVE-2021-26333

Published: Sep 21, 2021

Modified: May 28, 2026

PUBLISHED

Description

An information disclosure vulnerability exists in AMD Platform Security Processor (PSP) chipset driver. The discretionary access control list (DACL) may allow low privileged users to open a handle and send requests to the driver resulting in a potential data leak from uninitialized physical pages.

Vendor	Product	Versions
AMD	PSP Driver	affected `PSP Driver - < 5.17.0.0`

Weaknesses (CWE)

References

20210917 AMD Chipset Driver Information Disclosure Vulnerability [CVE-2021-26333]

mailing-list

x_refsource_FULLDISC

http://packetstormsecurity.com/files/164202/AMD-Chipset-Driver-Information-Disclosure-Memory-Leak.html

x_refsource_MISC

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1009

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.