Lucene search

[email protected]CVE-2021-26340

HistoryDec 10, 2021 - 10:15 p.m.

CVE-2021-26340

2021-12-1022:15:08

[email protected]

web.nvd.nist.gov

cve-2021-26340

hypervisor

sev

sev-es

tlb

virtual machine

nvd

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:P/A:N

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

A malicious hypervisor in conjunction with an unprivileged attacker process inside an SEV/SEV-ES guest VM may fail to flush the Translation Lookaside Buffer (TLB) resulting in unexpected behavior inside the virtual machine (VM).

Affected configurations

NVD

Node

amdepyc_7001_firmwareMatch-

AND

amdepyc_7001Match-

Node

amdepyc_7232p_firmwareMatch-

AND

amdepyc_7232pMatch-

Node

amdepyc_7251_firmwareMatch-

AND

amdepyc_7251Match-

Node

amdepyc_7261_firmwareMatch-

AND

amdepyc_7261Match-

Node

amdepyc_7252_firmwareMatch-

AND

amdepyc_7252Match-

Node

amdepyc_74f3_firmwareMatch-

AND

amdepyc_74f3Match-

Node

amdepyc_7501_firmwareMatch-

AND

amdepyc_7501Match-

Node

amdepyc_7502_firmwareMatch-

AND

amdepyc_7502Match-

Node

amdepyc_7502p_firmwareMatch-

AND

amdepyc_7502pMatch-

Node

amdepyc_7513_firmwareMatch-

AND

amdepyc_7513Match-

Node

amdepyc_7532_firmwareMatch-

AND

amdepyc_7532Match-

Node

amdepyc_7542_firmwareMatch-

AND

amdepyc_7542Match-

Node

amdepyc_7543_firmwareMatch-

AND

amdepyc_7543Match-

Node

amdepyc_7543p_firmwareMatch-

AND

amdepyc_7543pMatch-

Node

amdepyc_7551_firmwareMatch-

AND

amdepyc_7551Match-

Node

amdepyc_7551p_firmwareMatch-

AND

amdepyc_7551pMatch-

Node

amdepyc_7552_firmwareMatch-

AND

amdepyc_7552Match-

Node

amdepyc_75f3_firmwareMatch-

AND

amdepyc_75f3Match-

Node

amdepyc_7601_firmwareMatch-

AND

amdepyc_7601Match-

Node

amdepyc_7642_firmwareMatch-

AND

amdepyc_7642Match-

Node

amdepyc_7643_firmwareMatch-

AND

amdepyc_7643Match-

Node

amdepyc_7662_firmwareMatch-

AND

amdepyc_7662Match-

Node

amdepyc_7663_firmwareMatch-

AND

amdepyc_7663Match-

Node

amdepyc_7702p_firmwareMatch-

AND

amdepyc_7702pMatch-

Node

amdepyc_7702_firmwareMatch-

AND

amdepyc_7702Match-

Node

amdepyc_7713_firmwareMatch-

AND

amdepyc_7713Match-

Node

amdepyc_7713p_firmwareMatch-

AND

amdepyc_7713pMatch-

Node

amdepyc_7742_firmwareMatch-

AND

amdepyc_7742Match-

Node

amdepyc_7763_firmwareMatch-

AND

amdepyc_7763Match-

Node

amdepyc_7f32_firmwareMatch-

AND

amdepyc_7f32Match-

Node

amdepyc_7f52_firmwareMatch-

AND

amdepyc_7f52Match-

Node

amdepyc_7262_firmwareMatch-

AND

amdepyc_7262Match-

Node

amdepyc_7272_firmwareMatch-

AND

amdepyc_7272Match-

Node

amdepyc_7281_firmwareMatch-

AND

amdepyc_7281Match-

Node

amdepyc_7282_firmwareMatch-

AND

amdepyc_7282Match-

Node

amdepyc_72f3_firmwareMatch-

AND

amdepyc_72f3Match-

Node

amdepyc_7302_firmwareMatch-

AND

amdepyc_7302Match-

Node

amdepyc_7301_firmwareMatch-

AND

amdepyc_7301Match-

Node

amdepyc_7302p_firmwareMatch-

AND

amdepyc_7302pMatch-

Node

amdepyc_7313_firmwareMatch-

AND

amdepyc_7313Match-

Node

amdepyc_7313p_firmwareMatch-

AND

amdepyc_7313pMatch-

Node

amdepyc_7343_firmwareMatch-

AND

amdepyc_7343Match-

Node

amdepyc_7351_firmwareMatch-

AND

amdepyc_7351Match-

Node

amdepyc_7351p_firmwareMatch-

AND

amdepyc_7351pMatch-

Node

amdepyc_7352_firmwareMatch-

AND

amdepyc_7352Match-

Node

amdepyc_7371_firmwareMatch-

AND

amdepyc_7371Match-

Node

amdepyc_73f3_firmwareMatch-

AND

amdepyc_73f3Match-

Node

amdepyc_7401_firmwareMatch-

AND

amdepyc_7401Match-

Node

amdepyc_7401p_firmwareMatch-

AND

amdepyc_7401pMatch-

Node

amdepyc_7402_firmwareMatch-

AND

amdepyc_7402Match-

Node

amdepyc_7402p_firmwareMatch-

AND

amdepyc_7402pMatch-

Node

amdepyc_7413_firmwareMatch-

AND

amdepyc_7413Match-

Node

amdepyc_7443p_firmwareMatch-

AND

amdepyc_7443pMatch-

Node

amdepyc_7443_firmwareMatch-

AND

amdepyc_7443Match-

Node

amdepyc_7451_firmwareMatch-

AND

amdepyc_7451Match-

Node

amdepyc_7452_firmwareMatch-

AND

amdepyc_7452Match-

Node

amdepyc_7453_firmwareMatch-

AND

amdepyc_7453Match-

Node

amdepyc_7f72_firmwareMatch-

AND

amdepyc_7f72Match-

Node

amdepyc_7h12_firmwareMatch-

AND

amdepyc_7h12Match-

Node

amdepyc_embedded_3101_firmwareMatch-

AND

amdepyc_embedded_3101Match-

Node

amdepyc_embedded_3151_firmwareMatch-

AND

amdepyc_embedded_3151Match-

Node

amdepyc_embedded_3201_firmwareMatch-

AND

amdepyc_embedded_3201Match-

Node

amdepyc_embedded_3251_firmwareMatch-

AND

amdepyc_embedded_3251Match-

Node

amdepyc_embedded_3255_firmwareMatch-

AND

amdepyc_embedded_3255Match-

Node

amdepyc_embedded_3351_firmwareMatch-

AND

amdepyc_embedded_3351Match-

Node

amdepyc_embedded_3451_firmwareMatch-

AND

amdepyc_embedded_3451Match-

Node

amdepyc_embedded_7601_firmwareMatch-

AND

amdepyc_embedded_7601Match-

Node

amdepyc_embedded_7551_firmwareMatch-

AND

amdepyc_embedded_7551Match-

Node

amdepyc_embedded_7501_firmwareMatch-

AND

amdepyc_embedded_7501Match-

Node

amdepyc_embedded_7451_firmwareMatch-

AND

amdepyc_embedded_7451Match-

Node

amdepyc_embedded_7401_firmwareMatch-

AND

amdepyc_embedded_7401Match-

Node

amdepyc_embedded_7371_firmwareMatch-

AND

amdepyc_embedded_7371Match-

Node

amdepyc_embedded_7351_firmwareMatch-

AND

amdepyc_embedded_7351Match-

Node

amdepyc_embedded_7301_firmwareMatch-

AND

amdepyc_embedded_7301Match-

Node

amdepyc_embedded_7281_firmwareMatch-

AND

amdepyc_embedded_7281Match-

Node

amdepyc_embedded_7261_firmwareMatch-

AND

amdepyc_embedded_7261Match-

Node

amdepyc_embedded_7251_firmwareMatch-

AND

amdepyc_embedded_7251Match-

Node

amdepyc_embedded_755p_firmwareMatch-

AND

amdepyc_embedded_755pMatch-

Node

amdepyc_embedded_740p_firmwareMatch-

AND

amdepyc_embedded_740pMatch-

Node

amdepyc_embedded_735p_firmwareMatch-

AND

amdepyc_embedded_735pMatch-

Node

amdepyc_embedded_7h12_firmwareMatch-

AND

amdepyc_embedded_7h12Match-

Node

amdepyc_embedded_7742_firmwareMatch-

AND

amdepyc_embedded_7742Match-

Node

amdepyc_embedded_7702_firmwareMatch-

AND

amdepyc_embedded_7702Match-

Node

amdepyc_embedded_7662_firmwareMatch-

AND

amdepyc_embedded_7662Match-

Node

amdepyc_embedded_7642_firmwareMatch-

AND

amdepyc_embedded_7642Match-

Node

amdepyc_embedded_7552_firmwareMatch-

AND

amdepyc_embedded_7552Match-

Node

amdepyc_embedded_7542_firmwareMatch-

AND

amdepyc_embedded_7542Match-

Node

amdepyc_embedded_7532_firmwareMatch-

AND

amdepyc_embedded_7532Match-

Node

amdepyc_embedded_7502_firmwareMatch-

AND

amdepyc_embedded_7502Match-

Node

amdepyc_embedded_7452_firmwareMatch-

AND

amdepyc_embedded_7452Match-

Node

amdepyc_embedded_7f72_firmwareMatch-

AND

amdepyc_embedded_7f72Match-

Node

amdepyc_embedded_7402_firmwareMatch-

AND

amdepyc_embedded_7402Match-

Node

amdepyc_embedded_7352_firmwareMatch-

AND

amdepyc_embedded_7352Match-

Node

amdepyc_embedded_7f52_firmwareMatch-

AND

amdepyc_embedded_7f52Match-

Node

amdepyc_embedded_7302_firmwareMatch-

AND

amdepyc_embedded_7302Match-

Node

amdepyc_embedded_7282_firmwareMatch-

AND

amdepyc_embedded_7282Match-

Node

amdepyc_embedded_7272_firmwareMatch-

AND

amdepyc_embedded_7272Match-

Node

amdepyc_embedded_7f32_firmwareMatch-

AND

amdepyc_embedded_7f32Match-

Node

amdepyc_embedded_7262_firmwareMatch-

AND

amdepyc_embedded_7262Match-

Node

amdepyc_embedded_7252_firmwareMatch-

AND

amdepyc_embedded_7252Match-

Node

amdepyc_embedded_7702p_firmwareMatch-

AND

amdepyc_embedded_7702pMatch-

Node

amdepyc_embedded_7502p_firmwareMatch-

AND

amdepyc_embedded_7502pMatch-

Node

amdepyc_embedded_7402p_firmwareMatch-

AND

amdepyc_embedded_7402pMatch-

Node

amdepyc_embedded_7302p_firmwareMatch-

AND

amdepyc_embedded_7302pMatch-

Node

amdepyc_embedded_7232p_firmwareMatch-

AND

amdepyc_embedded_7232pMatch-

CPENameOperatorVersion
amd:epyc_7001_firmwareamd epyc 7001 firmwareeq-

CPE	Name	Operator	Version
amd:epyc_7001_firmware	amd epyc 7001 firmware	eq	-

CNA Affected

[
  {
    "product": "AMD EPYC™",
    "vendor": "AMD",
    "versions": [
      {
        "lessThanOrEqual": "3rd gen EPYC",
        "status": "affected",
        "version": "Processor ",
        "versionType": "custom"
      }
    ]
  }
]

References

www.amd.com/en/corporate/product-security/bulletin/amd-sb-1023

3.6 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:P/A:N

8.4 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N

8.2 High

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

12.7%

JSON

Related for CVE-2021-26340

cvelist1 amd1 prion1 nvd1