Epyc 8224P Firmware Security Vulnerabilities
Failure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token to force an out-of-bounds memory read potentially resulting in a denial of service.
4.9CVSS
6.1AI Score
0.0004EPSS
Insufficient DRAM address validation in SystemManagement Unit (SMU) may allow an attacker to read/write from/to an invalidDRAM address, potentially resulting in denial-of-service.
7.5CVSS
7.8AI Score
0.001EPSS
SMM configuration may not be immutable, as intended, when SNP is enabled resulting in a potential limited loss of guest memory integrity.
5.3CVSS
6.3AI Score
0.0005EPSS
Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity.
7.5CVSS
7.1AI Score
0.0005EPSS
A privileged attackercan prevent delivery of debug exceptions to SEV-SNP guests potentiallyresulting in guests not receiving expected debug information.
3.2CVSS
4AI Score
0.0004EPSS