Description
Improper restriction of operations in the IOMMU could allow a malicious hypervisor to access guest private memory resulting in loss of integrity.
CVSS breakdown
CVSS 3.1
Attack Vector
Local
Attack Complexity
High
Privileges Required
High
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
High
Availability
None
Affected products
- AMD / AMD EPYC™ 7003 Series ProcessorsMilan 100C – Milan 100C
- AMD / AMD EPYC™ 8004 Series ProcessorsGenoa 100C – Genoa 100C
- AMD / AMD EPYC™ 9004 Series ProcessorsGenoa 100C – Genoa 100C
- AMD / AMD EPYC™ Embedded 7003 Series ProcessorsEmbMilanPI-SP3 1.0.0.9 – EmbMilanPI-SP3 1.0.0.9
- AMD / AMD EPYC™ Embedded 9004 Series ProcessorsEmbGenoaPI-SP5 1.0.0.7 – EmbGenoaPI-SP5 1.0.0.7