Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
amd secure encrypted virtualization firmware vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-9836
Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and previous versions has an insecure cryptographic implementation.
Amd Secure Encrypted Virtualization Firmware
Opensuse Leap 15.0
Opensuse Leap 15.1
2.1
CVSSv2
CVE-2020-12966
AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted Virtualization with Encrypted State (SEV-ES) and Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). A local authenticated attacker could potentially exploit this v...
Amd Epyc 7763 Firmware
Amd Epyc 7713p Firmware
Amd Epyc 7713 Firmware
Amd Epyc 7663 Firmware
Amd Epyc 7643 Firmware
Amd Epyc 75f3 Firmware
Amd Epyc 7543p Firmware
Amd Epyc 7543 Firmware
Amd Epyc 7513 Firmware
Amd Epyc 74f3 Firmware
Amd Epyc 7453 Firmware
Amd Epyc 7443p Firmware
Amd Epyc 7443 Firmware
Amd Epyc 7413 Firmware
Amd Epyc 73f3 Firmware
Amd Epyc 7343 Firmware
Amd Epyc 7313p Firmware
Amd Epyc 7313 Firmware
Amd Epyc 72f3 Firmware
Amd Epyc 7003 Firmware
Amd Epyc 7001 Firmware -
Amd Epyc 7002 Firmware -
1 Github repository
NA
CVE-2023-20573
A privileged attacker can prevent delivery of debug exceptions to SEV-SNP guests potentially resulting in guests not receiving expected debug information.
Amd Epyc 7763 Firmware -
Amd Epyc 7713p Firmware -
Amd Epyc 7713 Firmware -
Amd Epyc 7663p Firmware -
Amd Epyc 7663 Firmware -
Amd Epyc 7643p Firmware -
Amd Epyc 7773x Firmware -
Amd Epyc 7643 Firmware -
Amd Epyc 7573x Firmware -
Amd Epyc 75f3 Firmware -
Amd Epyc 7543p Firmware -
Amd Epyc 7543 Firmware -
Amd Epyc 7513 Firmware -
Amd Epyc 7473x Firmware -
Amd Epyc 7453 Firmware -
Amd Epyc 74f3 Firmware -
Amd Epyc 7443p Firmware -
Amd Epyc 7443 Firmware -
Amd Epyc 7413 Firmware -
Amd Epyc 7373x Firmware -
Amd Epyc 73f3 Firmware -
Amd Epyc 7343 Firmware -
NA
CVE-2021-26406
Insufficient validation in parsing Owner's Certificate Authority (OCA) certificates in SEV (AMD Secure Encrypted Virtualization) and SEV-ES user application can lead to a host crash potentially resulting in denial of service.
Amd Epyc 7232p Firmware Romepi 1.0.0.a
Amd Epyc 7252 Firmware Romepi 1.0.0.a
Amd Epyc 7262 Firmware Romepi 1.0.0.a
Amd Epyc 7272 Firmware Romepi 1.0.0.a
Amd Epyc 7282 Firmware Romepi 1.0.0.a
Amd Epyc 7302 Firmware Romepi 1.0.0.a
Amd Epyc 7302p Firmware Romepi 1.0.0.a
Amd Epyc 7352 Firmware Romepi 1.0.0.a
Amd Epyc 7402 Firmware Romepi 1.0.0.a
Amd Epyc 7402p Firmware Romepi 1.0.0.a
Amd Epyc 7452 Firmware Romepi 1.0.0.a
Amd Epyc 7502 Firmware Romepi 1.0.0.a
Amd Epyc 7502p Firmware Romepi 1.0.0.a
Amd Epyc 7532 Firmware Romepi 1.0.0.a
Amd Epyc 7542 Firmware Romepi 1.0.0.a
Amd Epyc 7552 Firmware Romepi 1.0.0.a
Amd Epyc 7642 Firmware Romepi 1.0.0.a
Amd Epyc 7662 Firmware Romepi 1.0.0.a
Amd Epyc 7702 Firmware Romepi 1.0.0.a
Amd Epyc 7702p Firmware Romepi 1.0.0.a
Amd Epyc 7742 Firmware Romepi 1.0.0.a
Amd Epyc 7f32 Firmware Romepi 1.0.0.a
NA
CVE-2022-36879
An issue exists in the Linux kernel up to and including 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Netapp A700s Firmware -
Netapp Active Iq Unified Manager -
Netapp Hci Bootstrap Os -
Netapp E-series Santricity Os Controller
Netapp Aff 8300 Firmware -
Netapp Fas 8300 Firmware -
Netapp Aff 8700 Firmware -
Netapp Fas 8700 Firmware -
Netapp Aff A400 Firmware -
Netapp Fas A400 Firmware -
Netapp Aff A250 Firmware -
Netapp Fas A250 Firmware -
Netapp Fas 500f Firmware -
Netapp Aff 500f Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H410s Firmware -
Netapp H410c Firmware -
7.2
CVSSv2
CVE-2022-1679
A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the sys...
Linux Linux Kernel
Debian Debian Linux 10.0
Netapp H410c Firmware -
Netapp H300s Firmware -
Netapp H500s Firmware -
Netapp H700s Firmware -
Netapp H300e Firmware -
Netapp H500e Firmware -
Netapp H700e Firmware -
Netapp H410s Firmware -
2 Github repositories
NA
CVE-2022-40307
An issue exists in the Linux kernel up to and including 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free.
Linux Linux Kernel
Debian Debian Linux 10.0
Debian Debian Linux 11.0
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started