CVEInsight.

Free vulnerability intelligence for developers, security teams, and researchers. Data sourced from public databases for informational purposes only.

Explore

Legal

CVE data sourced from NVD / NIST & public disclosures.

amd

epyc_embedded_3451_firmware

5 known vulnerabilities · sorted by CVSS score

CVE-2021-26340

HIGH8.4

A malicious hypervisor in conjunction with an unprivileged attacker process inside an SEV/SEV-ES guest VM may fail to flush the Translation Lookaside Buffer (TLB) resulting in unexpected behavior inside the virtual machine (VM).

amd / epyc_7001_firmware+104

Local

Published Dec 10, 2021

CVE-2021-46744

MEDIUM6.5

An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time.

amd / epyc_embedded_7452_firmware+98

Local

Published May 11, 2022

CVE-2023-20575

MEDIUM6.5

A potential power side-channel vulnerability in some AMD processors may allow an authenticated attacker to use the power reporting functionality to monitor a program’s execution inside an AMD SEV VM potentially resulting in a leak of sensitive information.

amd / epyc_9554_firmware+87

Network

Published Jul 11, 2023

CVE-2020-12966

MEDIUM5.5

AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted Virtualization with Encrypted State (SEV-ES) and Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). A local authenticated attacker could potentially exploit this vulnerability leading to leaking guest data by the malicious hypervisor.

amd / epyc_7763_firmware+106

Local

Published Feb 4, 2022

CVE-2022-27672

MEDIUM4.7

When SMT is enabled, certain AMD processors may speculatively execute instructions using a target from the sibling thread after an SMT mode switch potentially resulting in information disclosure.

amd / athlon_x4_750_firmware+169

Local

Published Mar 1, 2023