Insufficient bounds checking in an SMU mailbox register could allow an attacker to potentially read outside of the SRAM address range which could result in an exception handling leading to a potential denial of service.
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1028