Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.5
CVSSv3

CVE-2021-46744

Published: 11/05/2022 Updated: 08/08/2023
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 6.5 | Impact Score: 4 | Exploitability Score: 2
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Amd

Vulnerability Summary

An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

amd epyc_7001_firmware -

amd epyc_7002_firmware -

amd epyc_7003_firmware -

amd epyc_7232p_firmware -

amd epyc_7251_firmware -

amd epyc_7252_firmware -

amd epyc_7261_firmware -

amd epyc_7262_firmware -

amd epyc_7272_firmware -

amd epyc_7281_firmware -

amd epyc_7282_firmware -

amd epyc_7301_firmware -

amd epyc_7302_firmware -

amd epyc_7302p_firmware -

amd epyc_7313_firmware -

amd epyc_7313p_firmware -

amd epyc_7343_firmware -

amd epyc_7351_firmware -

amd epyc_7351p_firmware -

amd epyc_7352_firmware -

amd epyc_7371_firmware -

amd epyc_7401_firmware -

amd epyc_7401p_firmware -

amd epyc_7402_firmware -

amd epyc_7402p_firmware -

amd epyc_7413_firmware -

amd epyc_7443_firmware -

amd epyc_7443p_firmware -

amd epyc_7451_firmware -

amd epyc_7452_firmware -

amd epyc_7453_firmware -

amd epyc_7501_firmware -

amd epyc_7502_firmware -

amd epyc_7502p_firmware -

amd epyc_7513_firmware -

amd epyc_7532_firmware -

amd epyc_7542_firmware -

amd epyc_7543_firmware -

amd epyc_7543p_firmware -

amd epyc_7551_firmware -

amd epyc_7551p_firmware -

amd epyc_7552_firmware -

amd epyc_7601_firmware -

amd epyc_7642_firmware -

amd epyc_7643_firmware -

amd epyc_7662_firmware -

amd epyc_7663_firmware -

amd epyc_7702_firmware -

amd epyc_7702p_firmware -

amd epyc_7713_firmware -

amd epyc_7713p_firmware -

amd epyc_7742_firmware -

amd epyc_7763_firmware -

amd epyc_embedded_3101_firmware -

amd epyc_embedded_3151_firmware -

amd epyc_embedded_3201_firmware -

amd epyc_embedded_3251_firmware -

amd epyc_embedded_3255_firmware -

amd epyc_embedded_3351_firmware -

amd epyc_embedded_3451_firmware -

amd epyc_embedded_7232p_firmware -

amd epyc_embedded_7251_firmware -

amd epyc_embedded_7252_firmware -

amd epyc_embedded_7261_firmware -

amd epyc_embedded_7262_firmware -

amd epyc_embedded_7272_firmware -

amd epyc_embedded_7281_firmware -

amd epyc_embedded_7282_firmware -

amd epyc_embedded_7301_firmware -

amd epyc_embedded_7302_firmware -

amd epyc_embedded_7302p_firmware -

amd epyc_embedded_7351_firmware -

amd epyc_embedded_7352_firmware -

amd epyc_embedded_735p_firmware -

amd epyc_embedded_7371_firmware -

amd epyc_embedded_7401_firmware -

amd epyc_embedded_7402_firmware -

amd epyc_embedded_7402p_firmware -

amd epyc_embedded_740p_firmware -

amd epyc_embedded_7451_firmware -

amd epyc_embedded_7452_firmware -

amd epyc_embedded_7501_firmware -

amd epyc_embedded_7502_firmware -

amd epyc_embedded_7502p_firmware -

amd epyc_embedded_7532_firmware -

amd epyc_embedded_7542_firmware -

amd epyc_embedded_7551_firmware -

amd epyc_embedded_7552_firmware -

amd epyc_embedded_755p_firmware -

amd epyc_embedded_7601_firmware -

amd epyc_embedded_7642_firmware -

amd epyc_embedded_7662_firmware -

amd epyc_embedded_7702_firmware -

amd epyc_embedded_7702p_firmware -

amd epyc_embedded_7742_firmware -

amd epyc_embedded_7f32_firmware -

amd epyc_embedded_7f52_firmware -

amd epyc_embedded_7f72_firmware -

amd epyc_embedded_7h12_firmware -

Github Repositories

https://github.com/jpbland1/wolfssl-expanded-ed25519

fork of wolfssl that enables the use of expanded ed25519 keys for use with Tor

wolfSSL Embedded SSL/TLS Library The wolfSSL embedded SSL library (formerly CyaSSL) is a lightweight SSL/TLS library written in ANSI C and targeted for embedded, RTOS, and resource-constrained environments - primarily because of its small size, speed, and feature set It is commonly used in standard operating environments as well because of its royalty-free pricing and excelle

References

CWE-203https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1033http://www.openwall.com/lists/oss-security/2022/08/08/6https://nvd.nist.govhttps://github.com/jpbland1/wolfssl-expanded-ed25519
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validationCVE-2024-34413CVE-2024-34089CVE-2024-33408localSQLCVE-2024-0402CVE-2024-33910CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook