Vulnerability in Amd Epyc™ 7003 Series Processors

CVE-2023-20585

Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest…

EPSS: 0.000 (5.2th percentile) — read the EPSS interpretation.

Affected products

Amd Epyc™ 7003 Series Processors — versions SEV FW 1.37.23
Amd Epyc™ 9004 Series Processors — versions SEV FW 1.37.31
Amd Epyc™ Embedded 7003 Series Processors — versions EmbMilanPI-SP3 1.0.0.B
Amd Epyc™ Embedded 9004 Series Processors — versions EmbGenoaPI-1.0.0.A

Weakness classification (CWE)

CWE-788

References

www.amd.com/en/resources/product-security/bulletin/AMD-SB-3016.html