CVE-2021-26403: Insufficient checks in SEV may lead to a malicious hypervisor disclosing the launch secret potentially resulting in compromise of VM confidentiality.

medium6.5CVSS 3.1

AVLACLPRLUINSCCHINAN

Insufficient checks in SEV may lead to a malicious hypervisor disclosing the launch secret potentially resulting in compromise of VM confidentiality.

43 ranges· showing 25

Vendor	Product	Version range	Fixed in
amd	1st_gen_epyc	—	—
amd	2nd_gen_epyc	—	—
amd	epyc_7001_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7002_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7232p_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7251_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7252_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7261_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7262_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7272_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7281_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7282_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7301_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7302_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7302p_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7351_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7351p_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7352_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7371_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7401_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7401p_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7402_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7402p_firmware	< romepi_1.0.0.9	romepi_1.0.0.9
amd	epyc_7451_firmware	< naplespi_1.0.0.e	naplespi_1.0.0.e
amd	epyc_7452_firmware	< romepi_1.0.0.9	romepi_1.0.0.9