CVE-2021-26391

Published: Nov 9, 2022

Modified: May 1, 2025

PUBLISHED

Description

Insufficient verification of multiple header signatures while loading a Trusted Application (TA) may allow an attacker with privileges to gain code execution in that TA or the OS/kernel.

Vendor	Product	Versions
AMD	AMD Radeon RX 5000 Series & PRO W5000 Series	affected `AMD Radeon Software - < 22.5.2` affected `AMD Radeon Pro Software Enterprise - < 22.Q2` affected `Enterprise Driver - < 22.10.20`
AMD	AMD Radeon RX 6000 Series & PRO W6000 Series	affected `AMD Radeon Software - < 22.5.2` affected `AMD Radeon Pro Software Enterprise - < 22.Q2` affected `Enterprise Driver - < 22.10.20`

References

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1029

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-26391

Description

Affected Products

References