CVE-2021-26342

3 documents3 sources

Severity

3.3LOW

EPSS

0.1%

top 83.05%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

AMD Epyc 7001 Firmware AMD Epyc 7251 Firmware AMD Epyc 7261 Firmware +36 more

Timeline

PublishedMay 11

Latest updateMay 12

Description

In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) following a particular sequence of operations that includes creation of a new virtual machine control block (VMCB). The failure to flush the TLB may cause the microcode to use stale TLB translations which may allow for disclosure of SEV guest memory contents. Users of SEV-ES/SEV-SNP guest VMs are not impacted by this vulnerability.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:NExploitability: 1.8 | Impact: 1.4

Affected Packages39 packages

▶NVDamd/epyc_7001_firmware< naplespi-sp3_1.0.0.h

▶NVDamd/epyc_7251_firmware< naplespi-sp3_1.0.0.h

▶NVDamd/epyc_7261_firmware< naplespi-sp3_1.0.0.h

▶NVDamd/epyc_7281_firmware< naplespi-sp3_1.0.0.h

▶NVDamd/epyc_72f3_firmware< milanpi-sp3_1.0.0.7

🔴Vulnerability Details

GHSA

GHSA-wp53-p3r5-cq4w: In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) following a particular sequence of operations that includes creatio↗2022-05-12

▶

CVEList

CVE-2021-26342: In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) following a particular sequence of operations that includes creatio↗2022-05-11

▶