88 matches found
CVE-2023-20569
CVE-2023-20569 concerns a side-channel vulnerability in some AMD CPUs where an attacker may influence the return-address predictor, enabling speculative execution at attacker-controlled addresses and potential information disclosure. The vulnerability is discussed across multiple connected source...
CVE-2022-23824
Summary: CVE-2022-23824 is listed as a Xen-related vulnerability in Debian security advisories and Gentoo GLSA, indicating multiple vulnerabilities in the Xen hypervisor that could lead to privilege escalation, denial of service, or information leaks. The Debian entry explicitly groups CVE-2022-2...
CVE-2023-20592
CVE-2023-20592 covers AMD CPUs where improper behavior of the INVD instruction could let a malicious hypervisor affect cache line write-back and potentially compromise guest VM memory integrity. Public documents in the connected set describe the issue across multiple IBM Power HMC/LINUX-firmware ...
CVE-2023-31346
CVE-2023-31346 is confirmed by connected advisories to affect linux-firmware related components and SEV firmware handling. The issue describes memory initialization failure in SEV firmware that may allow a privileged attacker to access stale data from other guests, impacting guest memory integrit...
CVE-2021-26339
Technical details are not publicly available in the provided documents for CVE-2021-26339. Monitor for updates from vendor advisories; no specific affected products, impact, or remediation details are present in the supplied materials.
CVE-2021-26342
CVE-2021-26342 is documented in the SUSE kernel-firmware advisories as part of a set of AMD/SEV-related fixes. The vulnerability description states that in SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) after a sequence including creation of a new VMCB, causing th...
CVE-2021-26316
CVE-2021-26316 describes a BIOS-level input/communication buffer validation flaw in AMD platforms that may allow a local attacker with low privileges to tamper BIOS buffers and trigger SMM (System Management Mode) arbitrary code execution. Connected sources confirm the root cause is inadequate va...
CVE-2021-26347
CVE-2021-26347 is referenced in several advisories as part of AMD/ kernel-firmware updates. The description states a failure to validate the integer operand in the AMD Secure Processor bootloader could allow an integer overflow in the L2 directory table in SPI flash, potentially causing a denial ...
CVE-2021-46744
Technical details about CVE-2021-46744 are not publicly provided in the supplied Connected documents. The initial entry mentions a SEV data-inference risk on AMD SEV guests, but no product/version/root-cause/fix is given here. Monitor for updates.
CVE-2023-20584
CVE-2023-20584 involves AMD IOMMU handling of certain address ranges with invalid DTEs. The issue can allow a local privileged attacker with a compromised Hypervisor to induce DTE faults and bypass SEV-SNP RMP checks, potentially compromising guest integrity. Connected advisories note affected ke...
CVE-2021-26348
Technical details about CVE-2021-26348 are not publicly provided in the supplied documents; no affected products, root cause, or remediation specifics are present. Please monitor for updates from the referenced advisories and databases.
CVE-2023-20573
CVE-2023-20573 describes a defect in AMD SEV-SNP on 3rd/4th Gen EPYC processors where a privileged attacker can prevent delivery of debug exceptions to SEV-SNP guests, potentially causing guests to miss expected debug information. The issue is local to privileged attackers and affects the deliver...
CVE-2021-26324
CVE-2021-26324 concerns a bug in the SEV-ES TMR that may lead to a loss of memory integrity for SNP-active VMs on AMD EPYC platforms. The available documents do not provide an attacker’s exploit path or exploitability details. The AMD security bulletin AMD-SB-1021 maps this CVE to affected EPYC g...
CVE-2023-31347
CVE-2023-31347 stems from a code bug in Secure_TSC used by SEV firmware, potentially allowing a high-privilege attacker to cause a guest to observe an incorrect TSC, risking guest integrity. Affected: AMD SEV/SEV-SNP firmware; impact: loss of guest integrity with no disclosed remote code executio...
CVE-2021-26349
CVE-2021-26349 is listed as part of multiple SUSE kernel-firmware advisories (SUSE-SU-2022-1923-1 and related updates). The description indicates a vulnerability where failure to assign a new report ID to an imported guest could allow an SEV-SNP guest VM to be tricked into trusting a malicious Mi...
CVE-2021-26353
CVE-2021-26353 – AMD SMM input validation vulnerability. The issue arises from failure to validate inputs in System Management Mode (SMM), which can allow an attacker to trigger a mishandled error and leave the DRTM UApp partially initialized, potentially causing loss of memory integrity. Affecte...
CVE-2021-26370
Summary: CVE-2021-26370 describes an improper validation of the destination address in AMD EPYC UApp/ABL handling via SVC_LOAD_FW_IMAGE_BY_INSTANCE and SVC_LOAD_BINARY_BY_ATTRIB. Affected product/area: AMD EPYC server processors featuring UApp/ABL (as described in related sources). The issue conc...
CVE-2023-20521
CVE-2023-20521 describes a TOCTOU flaw in the AMD ASP Bootloader that could let an attacker with physical access tamper SPI ROM records after memory verification, risking confidentiality loss and potential DoS. Connected sources (SUSE kernel-firmware updates and AMD/SUSe advisories) confirm this ...
CVE-2020-12954
CVE-2020-12954 relates to an AMD Platform Security Processor (ASP) boot loader header where improper input and range validation can allow attacker-controlled values before signature verification, potentially enabling arbitrary code execution and bypassing SPI ROM protections to modify SPI ROM. Th...
CVE-2021-26312
CVE-2021-26312 is addressed in SUSE kernel-firmware updates. The advisory notes that failure to flush the IOMMU TLB may allow an IO device to access memory it should not, potentially compromising integrity. SUSE’s fixes update kernel-firmware to versions 20220411 (AMD microcode updates) and 20220...
CVE-2021-46771
CVE-2021-46771 : The AMD Secure Processor (ASP) firmware system call has insufficient validation of addresses, potentially allowing arbitrary code execution by a compromised user application. This is tied to the ASP/firmware boundary and could impact systems relying on ASP for secure processing. ...
CVE-2023-20575
CVE-2023-20575 describes a potential power side-channel vulnerability in some AMD processors that could allow an authenticated attacker to use the power reporting functionality to monitor a program’s execution inside an AMD SEV VM , potentially leaking sensitive information. The AMD security bull...
CVE-2021-46778
CVE-2021-46778 describes an information-disclosure side-channel vulnerability in AMD CPUs with SMT (Zen 1–Zen 4). The root cause is execution unit scheduler contention on SMT-enabled cores, allowing an attacker to infer data by measuring scheduler-queue contention. Public documents identify affec...
CVE-2021-26371
The CVE-2021-26371 entry concerns AMD Secure Processor (ASP)/AMD System Management Unit (SMU) where a compromised ABL or UApp could trigger a SHA256 system call to the bootloader, potentially exposing ASP memory to userspace and causing information disclosure. Technical details from connected sou...
CVE-2020-12966
CVE-2020-12966 corresponds to an information-disclosure vulnerability in AMD EPYC processors’ SEV-ES and SEV-SNP. A local authenticated attacker could leak guest data via the malicious hypervisor. Affected products include AMD EPYC generations with SEV/SEV-ES, with SEV-SNP enabling a mitigation p...
CVE-2021-26354
CVE-2021-26354 affects AMD’s ASP/Bootloader pathway (ASP/ABL) with Insufficient bounds checking that may allow a system call from a compromised ABL, initializing arbitrary memory to zero and potentially compromising integrity. The vulnerability is documented across multiple sources (NVD entry and...
CVE-2021-26398
CVE-2021-26398 affects the AMD Secure Processor (ASP) via insufficient input validation in SYS_KEY_DERIVE. A compromised user application or ABL may corrupt ASP OS memory, potentially enabling arbitrary code execution. Public details identify the vulnerability and associated risk to ASP/firmware,...
CVE-2021-26402
CVE-2021-26402 describes insufficient bounds checking in the AMD Secure Processor (ASP) firmware during BIOS mailbox handling, enabling an attacker to write partially controlled data out-of-bounds into SMM or SEV-ES regions and potentially compromise integrity and availability. The issue is discu...
CVE-2020-12946
CVE-2020-12946 affects AMD’s Platform Security Processor (ASP) firmware, where insufficient input validation for discrete TPM commands could cause loss of integrity and denial of service. The issue is discussed in AMD/SUZE bulletins and is addressed by updating to specific AGESA PI software versi...
CVE-2021-26332
CVE-2021-26332 describes a vulnerability in AMD Secure Encrypted Virtualization (SEV) related to failing to verify that SEV-ES TMR is not in MMIO space, potentially allowing integrity or availability loss. The affected component is SEV-ES TMR handling; root cause is improper verification in memor...
CVE-2021-26345
CVE-2021-26345 is an AMD ASP/firmware vulnerability where failure to validate the APCB value may allow a privileged attacker with physical access to tamper with the APCB token, forcing an out-of-bounds memory read and potentially causing a denial of service. Public details across SUSE OSV entries...
CVE-2021-26335
CVE-2021-26335 concerns the AMD Secure Processor (ASP) boot loader image header. The issue is improper input and range checking, enabling attacker-controlled values before signature validation and potentially allowing arbitrary code execution. In NVD/AMD documentation, the vulnerability is listed...
CVE-2021-26336
CVE-2021-26336 concerns AMD System Management Unit (SMU) with insufficient bounds checking that can cause invalid memory accesses/updates, leading to an SMU hang and the system may fail to service further requests from other components. Multiple sources confirm the issue under the SMU and referen...
CVE-2020-12988
CVE-2020-12988 affects AMD EPYC platforms (1st–3rd Gen) per AMD-SB-1021. The DoS issue is described as a hang during system reboot in the integrated chipset/AMD platform components (e.g., ASP/SMU/SEV family). Affected products include 1st Gen EPYC (Naples), 2nd Gen (Rome), and 3rd Gen (Milan) CPU...
CVE-2021-26340
CVE-2021-26340 is a published vulnerability affecting AMD SEV/SEV-ES environments. A malicious hypervisor with an unprivileged attacker process inside a guest VM may fail to flush the TLB, causing unexpected VM behavior and potential loss of integrity and confidentiality. Affected products includ...
CVE-2023-20527
CVE-2023-20527 concerns the AMD Secure Processor (ASP) Bootloader. The issue is an improper syscall input validation in the Bootloader, which may allow a privileged attacker to read memory out-of-bounds, potentially causing a denial-of-service. The CVSS v3.1 metrics indicate Network attack vector...
CVE-2023-20533
CVE-2023-20533 is documented in multiple trusted sources as a vulnerability in the AMD SMU/ASP ecosystem: it describes insufficient DRAM address validation in the System Management Unit (SMU), which may allow a DMA attacker to read/write invalid DRAM addresses and could lead to denial of service....
CVE-2021-46756
CVE-2021-46756 describes insufficient validation of inputs in SVC_MAP_USER_STACK in the AMD Secure Processor (ASP) bootloader. A malicious UApp or ABL could send malformed or invalid syscalls to the bootloader, potentially causing a denial of service and loss of integrity. The AMD security bullet...
CVE-2021-26343
CVE-2021-26343 describes insufficient validation in AMD’s ASP BIOS and DRTM commands, potentially allowing malicious supervisor x86 software to disclose memory contents (information disclosure). The vulnerability is linked to the AMD Secure Processor (ASP) and BIOS/DRTM handling, with impact limi...
CVE-2023-20520
CVE-2023-20520 affects the AMD Secure Processor (ASP) Bootloader. The issue is described as improper access control in the ASP Bootloader which may allow an attacker to corrupt the return address, causing a stack-based buffer overrun and potentially arbitrary code execution. Connected sources ide...
CVE-2023-20591
CVE-2023-20591 : Improper re-initialization of the IOMMU during a DRTM event may allow an untrusted platform configuration to persist, enabling an attacker to read or modify hypervisor memory and potentially compromise confidentiality, integrity, and availability. The vulnerability is discussed i...
CVE-2021-46763
The CVE-2021-46763 entry concerns AMD components: the AMD Secure Processor (ASP) and AMD System Management Unit (SMU). The root cause is insufficient input validation in the SMU, which may allow a privileged attacker to write beyond the bounds of a shared memory buffer, potentially compromising i...
CVE-2021-46774
CVE-2021-46774 describes insufficient input validation in the AMD ABL, enabling a privileged attacker to perform arbitrary DRAM writes and potentially execute code or escalate privileges. Connected advisories confirm this vulnerability is among issues addressed by AMD/PI firmware updates and kern...
CVE-2023-20594
CVE-2023-20594 concerns the AMD DXE driver. The root cause is improper initialization of variables in the DXE driver, which may allow a privileged local user to leak sensitive information. Impact is information disclosure with local access; attack vector is local. The vulnerability affects AMD DX...
CVE-2021-26356
CVE-2021-26356 describes a TOCTOU vulnerability in the ASP bootloader that can allow tampering with the SPI ROM after memory reads, potentially causing S3 data corruption and information disclosure in AMD Secure Processor/ASP boot scenarios. Affected components include the ASP bootloader within A...
CVE-2021-46762
CVE-2021-46762 is an AMD SMU/ASP input-validation vulnerability: insufficient validation in the System Management Unit (SMU) may allow corruption of SMU SRAM, risking integrity or availability. Affected products include AMD ASP/SMU components in AMD Embedded processors; exploitation details are n...
CVE-2023-20531
CVE-2023-20531 affects the AMD System Management Unit (SMU) in AMD EPYC platforms. The root cause is insufficient bound checks in SMU, allowing an attacker to update SRAM between address spaces to an invalid value, which can lead to a denial of service. Connected documents provide concrete detail...
CVE-2023-20529
The CVE-2023-20529 issue affects the AMD System Management Unit (SMU) , where insufficient bound checks can allow an attacker to update the sender/receiver address space to an invalid value, potentially causing a denial of service. The vulnerability is tied to SMU/firmware handling and is documen...
CVE-2023-20530
CVE-2023-20530 concerns the AMD System Management Unit (SMU) on AMD EPYC-based platforms. It involves insufficient input validation of BIOS mailbox messages in SMU, which can cause out-of-bounds memory reads and potentially lead to a denial of service. Public sources consistently describe the aff...
CVE-2020-12944
CVE-2020-12944 affects AMD Secure Processor (ASP) firmware, where insufficient validation of BIOS image length could allow arbitrary code execution. AMD documentation (AMD-SB-1027/1021) lists affected platforms across desktop, mobile and server AMD systems and provides mitigations via AGESA PI fi...