CVE-2022-23813
published 2023-01-11CVE-2022-23813: The software interfaces to ASP and SMU may not enforce the SNP memory security policy resulting in a potential loss of integrity of guest memory in a…
medium5.3CVSS 3.1
AVNACLPRNUINSUCNILAN
The software interfaces to ASP and SMU may not enforce the SNP memory security policy resulting in a potential loss of integrity of guest memory in a confidential compute environment.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | 2nd_gen_epyc | — | — |
| amd | 3rd_gen_epyc | — | — |
| amd | milanpi-sp3_firmware | < 1.0.0.9 | 1.0.0.9 |
| amd | romepi_firmware | < 1.0.0.e | 1.0.0.e |