Vulnerability in Amd 3rd Gen Epyc™ Processors
CVE-2023-31346
Failure to initialize memory in SEV Firmware may allow a privileged attacker to access stale data from other guests.
EPSS: 0.000 (11.2th percentile) — read the EPSS interpretation.
Affected products
- Amd 3rd Gen Epyc™ Processors — versions various
- Amd 4th Gen Epyc™ Processors — versions various
Public proof-of-concept exploits
References
- www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3007 (vendor-advisory)
Frequently asked questions
- What is CVE-2023-31346?
- CVE-2023-31346 is a vulnerability in Amd 3rd Gen Epyc™ Processors. Published 2024-02-13.
- Is CVE-2023-31346 known to be exploited?
- 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.