2 matches found
CVE-2021-26311
CVE-2021-26311 concerns AMD SEV/SEV-ES where memory can be rearranged in the guest address space without attestation detection, potentially enabling arbitrary code execution in a guest VM if a malicious administrator with server-hypervisor access acts. Documents cite the vulnerability in SEV/SEV-...
CVE-2020-12967
CVE-2020-12967 relates to AMD SEV/SEV-ES: the lack of nested page table protection could allow arbitrary code execution in a guest VM if a malicious administrator gains control of the server hypervisor. Affected are AMD SEV/SEV-ES-enabled platforms (e.g., AMD EPYC family). The root cause is insuf...