Lucene search
K

324 matches found

CVE
CVE
added 2026/02/10 7:7 p.m.11 views

CVE-2025-29948

CVE-2025-29948 affects AMD Secure Encrypted Virtualization (SEV) firmware. The issue is improper access control that could allow a malicious hypervisor to bypass RMP protections, potentially compromising SEV-SNP guest memory integrity. Affected software is SEV firmware; the root cause is access-c...

5.9CVSS5.5AI score0.00144EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.11 views

PT-2026-7448

Name of the Vulnerable Software and Affected Versions AMD Secure Encrypted Virtualization SEV firmware affected versions not specified Description An access control issue in AMD Secure Encrypted Virtualization SEV firmware may allow a malicious hypervisor to circumvent RMP protections. This could...

5.9CVSS5.4AI score0.00144EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.6 views

AMD EPYC 9005 Series 安全漏洞

The AMD EPYC 9005 Series is a series of processors developed by Advanced Microelectronics Devices, Inc. AMD. There are security vulnerabilities in the AMD EPYC 9005 Series. These vulnerabilities stem from improper handling of error conditions during host failures, which may allow privileged local...

1.8CVSS5.8AI score0.00115EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.6 views

PT-2026-7443

Improper handling of overlap between the segmented reverse map table RMP and system management mode SMM memory could allow a privileged attacker corrupt or partially infer SMM memory resulting in loss of integrity or confidentiality...

6.8CVSS5.5AI score0.00136EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.7 views

PT-2026-7444

Improper handling of error condition during host-induced faults can allow a local high-privileged attack to selectively drop guest DMA writes, potentially resulting in a loss of SEV-SNP guest memory integrity...

1.8CVSS5.5AI score0.00115EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.8 views

PT-2026-7451

Missing Checks in certain functions related to RMP initialization can allow a local admin privileged attacker to cause misidentification of I/O memory, potentially resulting in a loss of guest memory integrity...

1.8CVSS5.5AI score0.00115EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.6 views

PT-2026-7447

Insufficient or Incomplete Data Removal in Hardware Component in SEV firmware doesn't fully flush IOMMU. This can potentially lead to a loss of confidentiality and integrity in guest memory...

4.5CVSS5.5AI score0.0014EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.7 views

AMD Amd Epyc™ Embedded Processors和AMD EPYC 9005 Series 安全漏洞

AMD Amd Epyc™ Embedded Processors and AMD EPYC 9005 Series are products of American semiconductor company AMD. The Amd Epyc™ Embedded Processors are embedded processors. The AMD EPYC 9005 Series is a series of processors. Both the AMD Amd Epyc™ Embedded Processors and the AMD EPYC 9005 Series hav...

5.9CVSS5.8AI score0.00143EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/02/10 12:0 a.m.8 views

AMD Processors 安全漏洞

AMD Processors are a series of processors developed by American semiconductor company AMD. There are security vulnerabilities in AMD Processors, which stem from improper access controls and may lead to loss of confidentiality and integrity of guest memory. The following products are affected: AMD...

6.9CVSS5.8AI score0.00136EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/10 12:0 a.m.9 views

PT-2026-7446

Improper access control in secure encrypted virtualization SEV could allow a privileged attacker to write to the reverse map page RMP during secure nested paging SNP initialization, potentially resulting in a loss of guest memory confidentiality and integrity...

6.9CVSS5.5AI score0.00136EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.5 views

MiracleLinux 8 : linux-firmware-20240111-121.gitb3132c18.el8 (AXSA:2024-8159:05)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8159:05 advisory. hw: intel: Protection mechanism failure for some IntelR PROSet/Wireless WiFi CVE-2022-46329 hw: amd: INVD instruction may lead to a loss of SEV-ES...

8.2CVSS7.5AI score0.01018EPSS
Exploits0References3
Malwarebytes
Malwarebytes
added 2026/01/13 12:55 p.m.5 views

Why iPhone users should update and restart their devices now

If you were still questioning whether iOS 26+ is for you, now is the time to make that call. Why? On December 12, 2025, Apple patched two WebKit zero‑day vulnerabilities linked to mercenary spyware and is now effectively pushing iPhone 11 and newer users toward iOS 26+, because that’s where the...

7.8AI score
Exploits0
Oracle linux
Oracle linux
added 2025/12/11 12:0 a.m.7 views

edk2 security update

20250905-4 - Create new 20250905 release for OL9 which includes the following fixed CVEs: - EDK2: EDK2 contains a vulnerability in BIOS where an attacker may cause 'Protection Mechanism Failure' by local access Orabug: 38381983 CVE-2025-3770 - EDK2: EDK2 contains a vulnerability in BIOS where a...

7CVSS7.1AI score0.05966EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/11/24 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-0033

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a lo...

6CVSS7.3AI score0.00194EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/11/21 3:45 p.m.9 views

USN-7879-2: Linux kernel (Real-time) vulnerabilities

It was discovered that improper initialization of CPU cache memory could allow a local attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity. CVE-2024-36331 Several security issues were discovered in the Linux kernel. An attacker could possibly use...

8.5CVSS7.4AI score0.07142EPSS
Exploits3
RedhatCVE
RedhatCVE
added 2025/10/24 8:32 a.m.4 views

CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

6CVSS8.9AI score0.00194EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 3:16 p.m.4 views

DEBIAN-CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

6CVSS8.8AI score0.00194EPSS
Exploits0References1
NVD
NVD
added 2025/10/14 3:16 p.m.6 views

CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

6CVSS0.00194EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 3:16 p.m.2 views

UBUNTU-CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

6CVSS7.3AI score0.00194EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/14 2:49 p.m.5 views

EUVD-2025-34221

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

6CVSS6.3AI score0.00194EPSS
Exploits0References2
Rows per page
Query Builder