Description
Improper handling of error condition during host-induced faults can allow a local high-privileged attack to selectively drop guest DMA writes, potentially resulting in a loss of SEV-SNP guest memory integrity
CVSS breakdown
CVSS 4.0
Attack Vector
Local
Attack Complexity
High
Attack Requirements
None
Privileges Required
High
User Interaction
None
Confidentiality (Vulnerable System)
None
Integrity (Vulnerable System)
Low
Availability (Vulnerable System)
None
Confidentiality (Subsequent System)
None
Integrity (Subsequent System)
Low
Availability (Subsequent System)
None
Affected products
- AMD / AMD EPYC™ 9005 Series ProcessorsTurinPI 1.0.0.5 – TurinPI 1.0.0.5
- AMD / AMD EPYC™ Embedded 9005 Series ProcessorsEmbTurinPI-SP5_1.0.0.0 – EmbTurinPI-SP5_1.0.0.0