Lucene search

K

57 matches found

CVE
CVE
added 2023/01/11 8:15 a.m.46 views

CVE-2023-20525

Insufficient syscall input validation in the ASP Bootloader may allow a privileged attacker to read memory outside the bounds of a mapped register potentially leading to a denial of service.

6.5CVSS6.6AI score0.0011EPSS
CVE
CVE
added 2024/08/05 4:15 p.m.45 views

CVE-2023-31355

Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to overwrite a guest's UMC seed potentially allowing reading of memory from a decommissioned guest.

6CVSS7.2AI score0.00934EPSS
CVE
CVE
added 2024/08/13 5:15 p.m.44 views

CVE-2021-26344

An out of bounds memory write when processing the AMDPSP1 Configuration Block (APCB) could allow an attacker with access the abilityto modify the BIOS image, and the ability to sign the resulting image, topotentially modify the APCB block resulting in arbitrary code execution.

8.2CVSS7.9AI score0.00031EPSS
CVE
CVE
added 2023/01/11 8:15 a.m.42 views

CVE-2021-26396

Insufficient validation of address mapping to IO in ASP (AMD Secure Processor) may result in a loss of memory integrity in the SNP guest.

4.4CVSS5.5AI score0.00021EPSS
CVE
CVE
added 2023/05/09 7:15 p.m.42 views

CVE-2021-26397

Insufficient address validation, may allow anattacker with a compromised ABL and UApp to corrupt sensitive memory locationspotentially resulting in a loss of integrity or availability.

7.1CVSS7.3AI score0.00032EPSS
CVE
CVE
added 2024/08/05 4:15 p.m.40 views

CVE-2024-21980

Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to potentially overwrite a guest's memory or UMC seed resulting in loss of confidentiality and integrity.

7.9CVSS7.2AI score0.00934EPSS
CVE
CVE
added 2023/01/11 8:15 a.m.33 views

CVE-2021-26328

Failure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of memory integrity for SNP guests.

4.4CVSS5.7AI score0.0005EPSS
Total number of security vulnerabilities57