CVEs-PoC/2021/CVE-2021-26392.md

### [CVE-2021-26392](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-26392)
![](https://img.shields.io/static/v1?label=Product&message=AMD%20Radeon%20RX%205000%20Series%20%26%20PRO%20W5000%20Series&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=AMD%20Radeon%20RX%206000%20Series%20%26%20PRO%20W6000%20Series&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=AMD%20Ryzen%E2%84%A2%20Embedded%205000&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=AMD%20Ryzen%E2%84%A2%20Embedded%20R1000&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=AMD%20Ryzen%E2%84%A2%20Embedded%20R2000&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=AMD%20Ryzen%E2%84%A2%20Embedded%20V1000&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=AMD%20Ryzen%E2%84%A2%20Embedded%20V2000&color=blue)
![](https://img.shields.io/static/v1?label=Product&message=AMD%20Ryzen%E2%84%A2Embedded%20V3000&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=AMD%20Radeon%20Pro%20Software%20Enterprise%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=AMD%20Radeon%20Software%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=Enterprise%20Driver%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Version&message=various%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=blue)

### Description

Insufficient verification of missing size check in 'LoadModule' may lead to an out-of-bounds write potentially allowing an attacker with privileges to gain code execution of the OS/kernel by loading a malicious TA.

### POC

#### Reference
- https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1029
- https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-5001

#### Github
No PoCs found on GitHub currently.