CVE-2023-20584
published 2024-08-13CVE-2023-20584: IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), which may allow an attacker with privileges and a compromised…
medium6CVSS 3.1
AVLACLPRHUINSCCNIHAN
IOMMU improperly handles certain special address
ranges with invalid device table entries (DTEs), which may allow an attacker
with privileges and a compromised Hypervisor to
induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a
loss of guest integrity.
Affected
66 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | epyc_7203_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7203p_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_72f3_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7303_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7303p_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7313_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7313p_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7343_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7373x_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_73f3_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7413_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7443_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7443p_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7453_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7473x_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_74f3_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7513_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7543_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7543p_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7573x_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_75f3_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7643_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7643p_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7663_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
| amd | epyc_7663p_firmware | < milanpi_1.0.0.b | milanpi_1.0.0.b |
CVSS provenance
nvdv3.16.0MEDIUMCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:H/A:N
osv6.0MEDIUM