CVE-2023-20592

Published: 14/11/2023 Updated: 28/11/2023

CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8

VMScore: 0

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.

Vulnerable Product	Search on Vulmon	Subscribe to Product
amd epyc 7001 firmware -
amd epyc 7251 firmware -
amd epyc 7261 firmware -
amd epyc 7281 firmware -
amd epyc 7301 firmware -
amd epyc 7351 firmware -
amd epyc 7351p firmware -
amd epyc 7371 firmware -
amd epyc 7401 firmware -
amd epyc 7401p firmware -
amd epyc 7451 firmware -
amd epyc 7501 firmware -
amd epyc 7551 firmware -
amd epyc 7551p firmware -
amd epyc 7601 firmware -
amd epyc 7232p firmware -
amd epyc 7252 firmware -
amd epyc 7262 firmware -
amd epyc 7272 firmware -
amd epyc 7282 firmware -
amd epyc 7302 firmware -
amd epyc 7302p firmware -
amd epyc 7352 firmware -
amd epyc 7402 firmware -
amd epyc 7402p firmware -
amd epyc 7452 firmware -
amd epyc 7502 firmware -
amd epyc 7502p firmware -
amd epyc 7532 firmware -
amd epyc 7542 firmware -
amd epyc 7552 firmware -
amd epyc 7642 firmware -
amd epyc 7662 firmware -
amd epyc 7702 firmware -
amd epyc 7702p firmware -
amd epyc 7742 firmware -
amd epyc 7f32 firmware -
amd epyc 7f52 firmware -
amd epyc 7f72 firmware -
amd epyc 7h12 firmware -
amd epyc 7763 firmware
amd epyc 7713p firmware
amd epyc 7713 firmware
amd epyc 7663p firmware
amd epyc 7663 firmware
amd epyc 7643p firmware
amd epyc 7773x firmware
amd epyc 7643 firmware
amd epyc 7573x firmware
amd epyc 75f3 firmware
amd epyc 7543p firmware
amd epyc 7543 firmware
amd epyc 7513 firmware
amd epyc 7473x firmware
amd epyc 7453 firmware
amd epyc 74f3 firmware
amd epyc 7443p firmware
amd epyc 7443 firmware
amd epyc 7413 firmware
amd epyc 7373x firmware
amd epyc 73f3 firmware
amd epyc 7343 firmware
amd epyc 7313p firmware
amd epyc 7313 firmware
amd epyc 7303p firmware
amd epyc 7303 firmware
amd epyc 72f3 firmware
amd epyc 7203p firmware
amd epyc 7203 firmware

Synopsis Moderate: linux-firmware security update Type/Severity Security Advisory: Moderate Red Hat Insights patch analysis Identify and remediate systems affected by this advisory View affected systems Topic An update for linux-firmware is now available for Red Hat Enterprise Linux 7Red Hat Product Security has rated this update ...

DescriptionA flaw was found in some of AMD CPU's due to improper or unexpected behavior of the INVD This issue may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU, potentially leading to a loss of guest virtual machine (VM) memory integrityA flaw was found in some of AMD CPU's due to improp ...

Proof-of-concept implementation for the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security 2024)

CacheWarp This repository contains the experiments of evaluation and case studies discussed in the paper "CacheWarp: Software-based Fault Injection using Selective State Reset" (USENIX Security'24) You can find the paper at the USENIX website For the demos, please check our website Overview We introduce a new software-based fault injection attack on AMD SEV

NVD-CWE-noinfo https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-3005 https://access.redhat.com/errata/RHSA-2024:0753 https://nvd.nist.gov https://github.com/cispa/CacheWarp https://access.redhat.com/security/cve/cve-2023-20592

CVE-2023-20592

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect