IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity.
2024-08-13T17:15:19.713
2024-12-12T20:29:14.730
Analyzed
CVSSv3.1: 5.3 (MEDIUM)
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Operating System | amd | epyc_8024pn_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8024pn | - | No |
| Operating System | amd | epyc_8024p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8024p | - | No |
| Operating System | amd | epyc_8124pn_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8124pn | - | No |
| Operating System | amd | epyc_8124p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8124p | - | No |
| Operating System | amd | epyc_8224pn_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8224pn | - | No |
| Operating System | amd | epyc_8224p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8224p | - | No |
| Operating System | amd | epyc_8324pn_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8324pn | - | No |
| Operating System | amd | epyc_8324p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8324p | - | No |
| Operating System | amd | epyc_8434pn_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8434pn | - | No |
| Operating System | amd | epyc_8434p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8434p | - | No |
| Operating System | amd | epyc_8534pn_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8534pn | - | No |
| Operating System | amd | epyc_8534p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_8534p | - | No |
| Operating System | amd | epyc_9734_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9734 | - | No |
| Operating System | amd | epyc_9754s_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9754s | - | No |
| Operating System | amd | epyc_9754_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9754 | - | No |
| Operating System | amd | epyc_9184x_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9184x | - | No |
| Operating System | amd | epyc_9384x_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9384x | - | No |
| Operating System | amd | epyc_9684x_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9684x | - | No |
| Operating System | amd | epyc_9124_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9124 | - | No |
| Operating System | amd | epyc_9174f_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9174f | - | No |
| Operating System | amd | epyc_9224_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9224 | - | No |
| Operating System | amd | epyc_9254_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9254 | - | No |
| Operating System | amd | epyc_9274f_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9274f | - | No |
| Operating System | amd | epyc_9334_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9334 | - | No |
| Operating System | amd | epyc_9354_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9354 | - | No |
| Operating System | amd | epyc_9354p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9354p | - | No |
| Operating System | amd | epyc_9374f_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9374f | - | No |
| Operating System | amd | epyc_9454_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9454 | - | No |
| Operating System | amd | epyc_9454p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9454p | - | No |
| Operating System | amd | epyc_9474f_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9474f | - | No |
| Operating System | amd | epyc_9534_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9534 | - | No |
| Operating System | amd | epyc_9554_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9554 | - | No |
| Operating System | amd | epyc_9554p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9554p | - | No |
| Operating System | amd | epyc_9634_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9634 | - | No |
| Operating System | amd | epyc_9654_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9654 | - | No |
| Operating System | amd | epyc_9654p_firmware | < genoapi_1.0.0.b | Yes |
| Hardware | amd | epyc_9654p | - | No |
| Operating System | amd | epyc_7203_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7203 | - | No |
| Operating System | amd | epyc_7203p_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7203p | - | No |
| Operating System | amd | epyc_72f3_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_72f3 | - | No |
| Operating System | amd | epyc_7303_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7303 | - | No |
| Operating System | amd | epyc_7303p_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7303p | - | No |
| Operating System | amd | epyc_7313_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7313 | - | No |
| Operating System | amd | epyc_7313p_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7313p | - | No |
| Operating System | amd | epyc_7343_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7343 | - | No |
| Operating System | amd | epyc_73f3_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_73f3 | - | No |
| Operating System | amd | epyc_7373x_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7373x | - | No |
| Operating System | amd | epyc_7413_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7413 | - | No |
| Operating System | amd | epyc_7443_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7443 | - | No |
| Operating System | amd | epyc_7443p_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7443p | - | No |
| Operating System | amd | epyc_74f3_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_74f3 | - | No |
| Operating System | amd | epyc_7453_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7453 | - | No |
| Operating System | amd | epyc_7473x_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7473x | - | No |
| Operating System | amd | epyc_7513_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7513 | - | No |
| Operating System | amd | epyc_7543_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7543 | - | No |
| Operating System | amd | epyc_7543p_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7543p | - | No |
| Operating System | amd | epyc_75f3_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_75f3 | - | No |
| Operating System | amd | epyc_7573x_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7573x | - | No |
| Operating System | amd | epyc_7643_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7643 | - | No |
| Operating System | amd | epyc_7773x_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7773x | - | No |
| Operating System | amd | epyc_7643p_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7643p | - | No |
| Operating System | amd | epyc_7663_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7663 | - | No |
| Operating System | amd | epyc_7663p_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7663p | - | No |
| Operating System | amd | epyc_7713_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7713 | - | No |
| Operating System | amd | epyc_7713p_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7713p | - | No |
| Operating System | amd | epyc_7763_firmware | < milanpi_1.0.0.b | Yes |
| Hardware | amd | epyc_7763 | - | No |