Researchers from IOActive have presented a decades-old vulnerability in AMD processors at the Def Con security conference. The team of researchers Enrique Nissim and Kryzsztof Okupski said that the vulnerability could potentially allow an attacker to disable critical memory protections in the Ryzen and Epyc CPU lines, potentially allowing an admin account to elevate into the firmware level, effectively giving a local attacker complete control over the targeted system’s firmware.
Source: SC Magazine