Vulmon Recent Vulnerabilities Product List Research Posts Trends Blog About Contact

amd secure encrypted virtualization firmware vulnerabilities and exploits

(subscribe to this query)
5
CVSSv2
CVE-2019-9836
Secure Encrypted Virtualization (SEV) on Advanced Micro Devices (AMD) Platform Security Processor (PSP; aka AMD Secure Processor or AMD-SP) 0.17 build 11 and previous versions has an insecure cryptographic implementation.
Amd Secure Encrypted Virtualization FirmwareOpensuse Leap 15.0Opensuse Leap 15.1
2.1
CVSSv2
CVE-2020-12966
AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted Virtualization with Encrypted State (SEV-ES) and Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). A local authenticated attacker could potentially exploit this v...
Amd Epyc 7763 FirmwareAmd Epyc 7713p FirmwareAmd Epyc 7713 FirmwareAmd Epyc 7663 FirmwareAmd Epyc 7643 FirmwareAmd Epyc 75f3 FirmwareAmd Epyc 7543p FirmwareAmd Epyc 7543 FirmwareAmd Epyc 7513 FirmwareAmd Epyc 74f3 FirmwareAmd Epyc 7453 FirmwareAmd Epyc 7443p FirmwareAmd Epyc 7443 FirmwareAmd Epyc 7413 FirmwareAmd Epyc 73f3 FirmwareAmd Epyc 7343 FirmwareAmd Epyc 7313p FirmwareAmd Epyc 7313 FirmwareAmd Epyc 72f3 FirmwareAmd Epyc 7003 FirmwareAmd Epyc 7001 Firmware -Amd Epyc 7002 Firmware -
NA
CVE-2023-20573
A privileged attacker can prevent delivery of debug exceptions to SEV-SNP guests potentially resulting in guests not receiving expected debug information.
Amd Epyc 7763 Firmware -Amd Epyc 7713p Firmware -Amd Epyc 7713 Firmware -Amd Epyc 7663p Firmware -Amd Epyc 7663 Firmware -Amd Epyc 7643p Firmware -Amd Epyc 7773x Firmware -Amd Epyc 7643 Firmware -Amd Epyc 7573x Firmware -Amd Epyc 75f3 Firmware -Amd Epyc 7543p Firmware -Amd Epyc 7543 Firmware -Amd Epyc 7513 Firmware -Amd Epyc 7473x Firmware -Amd Epyc 7453 Firmware -Amd Epyc 74f3 Firmware -Amd Epyc 7443p Firmware -Amd Epyc 7443 Firmware -Amd Epyc 7413 Firmware -Amd Epyc 7373x Firmware -Amd Epyc 73f3 Firmware -Amd Epyc 7343 Firmware -
NA
CVE-2021-26406
Insufficient validation in parsing Owner's Certificate Authority (OCA) certificates in SEV (AMD Secure Encrypted Virtualization) and SEV-ES user application can lead to a host crash potentially resulting in denial of service.
Amd Epyc 7232p Firmware Romepi 1.0.0.aAmd Epyc 7252 Firmware Romepi 1.0.0.aAmd Epyc 7262 Firmware Romepi 1.0.0.aAmd Epyc 7272 Firmware Romepi 1.0.0.aAmd Epyc 7282 Firmware Romepi 1.0.0.aAmd Epyc 7302 Firmware Romepi 1.0.0.aAmd Epyc 7302p Firmware Romepi 1.0.0.aAmd Epyc 7352 Firmware Romepi 1.0.0.aAmd Epyc 7402 Firmware Romepi 1.0.0.aAmd Epyc 7402p Firmware Romepi 1.0.0.aAmd Epyc 7452 Firmware Romepi 1.0.0.aAmd Epyc 7502 Firmware Romepi 1.0.0.aAmd Epyc 7502p Firmware Romepi 1.0.0.aAmd Epyc 7532 Firmware Romepi 1.0.0.aAmd Epyc 7542 Firmware Romepi 1.0.0.aAmd Epyc 7552 Firmware Romepi 1.0.0.aAmd Epyc 7642 Firmware Romepi 1.0.0.aAmd Epyc 7662 Firmware Romepi 1.0.0.aAmd Epyc 7702 Firmware Romepi 1.0.0.aAmd Epyc 7702p Firmware Romepi 1.0.0.aAmd Epyc 7742 Firmware Romepi 1.0.0.aAmd Epyc 7f32 Firmware Romepi 1.0.0.a
NA
CVE-2022-36879
An issue exists in the Linux kernel up to and including 5.18.14. xfrm_expand_policies in net/xfrm/xfrm_policy.c can cause a refcount to be dropped twice.
Linux Linux KernelDebian Debian Linux 10.0Debian Debian Linux 11.0Netapp A700s Firmware -Netapp Active Iq Unified Manager -Netapp Hci Bootstrap Os -Netapp E-series Santricity Os ControllerNetapp Aff 8300 Firmware -Netapp Fas 8300 Firmware -Netapp Aff 8700 Firmware -Netapp Fas 8700 Firmware -Netapp Aff A400 Firmware -Netapp Fas A400 Firmware -Netapp Aff A250 Firmware -Netapp Fas A250 Firmware -Netapp Fas 500f Firmware -Netapp Aff 500f Firmware -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Netapp H410s Firmware -Netapp H410c Firmware -
7.2
CVSSv2
CVE-2022-1679
A use-after-free flaw was found in the Linux kernel’s Atheros wireless adapter driver in the way a user forces the ath9k_htc_wait_for_target function to fail with some input messages. This flaw allows a local user to crash or potentially escalate their privileges on the sys...
Linux Linux KernelDebian Debian Linux 10.0Netapp H410c Firmware -Netapp H300s Firmware -Netapp H500s Firmware -Netapp H700s Firmware -Netapp H300e Firmware -Netapp H500e Firmware -Netapp H700e Firmware -Netapp H410s Firmware -
NA
CVE-2022-40307
An issue exists in the Linux kernel up to and including 5.19.8. drivers/firmware/efi/capsule-loader.c has a race condition with a resultant use-after-free.
Linux Linux KernelDebian Debian Linux 10.0Debian Debian Linux 11.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flawCVE-2024-23692CVE-2024-26229CVE-2024-35255CVE-2024-5835CVE-2024-5837XML external entitydosCVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook