メインコンテンツに移動
AMD Security Vulnerabilities, August 2024

This update applies to the H11, H12 and H13 families of products powered by 1st/2nd/3rd/4th Gen AMD EPYC™ Processors. This update also applies to M11/M12 and H13 family of products powered by Ryzen™ Threadripper™ processor. Potential vulnerabilities in various platform components were discovered and have been mitigated in AMD EPYC™ and AMD Ryzen™ AGESA™ PI packages.

More Information:

Security Advisories that affect Supermicro BIOS:

  • AMD-SB-4004 - AMD Client Vulnerabilities – August 2024
    • Summary: Potential vulnerabilities in AMD Secure Processor (ASP), and other platform components were discovered, and mitigations are being provided in Platform Initialization (PI) firmware packages.
    • Description: Potential vulnerabilities affecting AMD Secure Processor (ASP), and other platform components were found during audits performed internally and by third parties.
    • Severity: High
  • AMD-SB-3003 - AMD Server Vulnerabilities – August 2024
    • Summary: Audits performed on AMD EPYC™ uncovered potential vulnerabilities affecting AMD Server platforms.
    • Description: Potential vulnerabilities in AMD EPYC™ Processor platforms affecting AMD Secure Processor (ASP), AMD Secure Encrypted Virtualization – Secure Nested Paging (SEV-SNP) and other platform components, were found during audits performed internally and by third parties.
    • Severity: High

Affected Products:

AMD-SB-4004 Affects the following server products:
AMD MotherboardBIOS version with the fix
M11SDV-4/8C(T)-LN4FNot Affected
M12SWAv 2.1a
H13SAE-MFv 2.0a
H13SRD-Fv 1.2
H13SRE-Fv 1.0
H13SRHNot Affected
AMD-SB-3003 Affects the following client products:
AMD Motherboard GenerationBIOS version with the fix
H11 – Naples (unsigned)v 1.4
H11 – Naples/Rome (signed)v 2.8
H12 – Rome/Milanv 2.8
H13 – Genoav 1.8
H13 – Siena (H13SVW)v 1.2