CVSS: 6.5EPSS: 0%CPEs: 198EXPL: 0CVE-2021-46744
https://notcve.org/view.php?id=CVE-2021-46744
11 May 2022 — An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time. Un atacante con acceso a un hipervisor malicioso puede ser capaz de inferir los valores de los datos usados en un huésped SEV en CPUs AMD mediante la monitorización de los valores del texto cifrado a lo largo del tiempo • http://www.openwall.com/lists/oss-security/2022/08/08/6 • CWE-203: Observable Discrepancy •
CVSS: 3.3EPSS: 0%CPEs: 76EXPL: 0CVE-2021-26342
https://notcve.org/view.php?id=CVE-2021-26342
11 May 2022 — In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) following a particular sequence of operations that includes creation of a new virtual machine control block (VMCB). The failure to flush the TLB may cause the microcode to use stale TLB translations which may allow for disclosure of SEV guest memory contents. Users of SEV-ES/SEV-SNP guest VMs are not impacted by this vulnerability. En las máquinas virtuales invitadas de SEV, la CPU puede fallar al vaciar la memoria intermedia... • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1028 •
CVSS: 6.5EPSS: 0%CPEs: 252EXPL: 0CVE-2021-26341 – hw: cpu: AMD CPUs may transiently execute beyond unconditional direct branch
https://notcve.org/view.php?id=CVE-2021-26341
11 Mar 2022 — Some AMD CPUs may transiently execute beyond unconditional direct branches, which may potentially result in data leakage. Algunas CPUs de AMD pueden ejecutar transitoriamente más allá de las ramas directas no condicionales, lo que puede potencialmente resultar en un filtrado de datos A flaw was found in hw. This issue can cause AMD CPUs to transiently execute beyond unconditional direct branches. Red Hat Advanced Cluster Management for Kubernetes 2.5.9 images Red Hat Advanced Cluster Management for Kubernet... • http://www.openwall.com/lists/oss-security/2022/03/18/2 • CWE-212: Improper Removal of Sensitive Information Before Storage or Transfer CWE-552: Files or Directories Accessible to External Parties •
CVSS: 5.6EPSS: 0%CPEs: 252EXPL: 0CVE-2021-26401 – hw: cpu: LFENCE/JMP Mitigation Update for CVE-2017-5715
https://notcve.org/view.php?id=CVE-2021-26401
11 Mar 2022 — LFENCE/JMP (mitigation V2-2) may not sufficiently mitigate CVE-2017-5715 on some AMD CPUs. LFENCE/JMP (mitigación V2-2) puede no mitigar suficientemente CVE-2017-5715 en algunas CPUs AMD A flaw was found in hw. The speculative execution window of AMD LFENCE/JMP mitigation (MITIGATION V2-2) may be large enough to be exploited on AMD CPUs. Red Hat Advanced Cluster Management for Kubernetes 2.5.0 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges th... • http://www.openwall.com/lists/oss-security/2022/03/18/2 •
CVSS: 5.5EPSS: 0%CPEs: 214EXPL: 0CVE-2020-12966
https://notcve.org/view.php?id=CVE-2020-12966
04 Feb 2022 — AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted Virtualization with Encrypted State (SEV-ES) and Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). A local authenticated attacker could potentially exploit this vulnerability leading to leaking guest data by the malicious hypervisor. Los procesadores AMD EPYC™ contienen una vulnerabilidad de divulgación de información en la virtualización cifrada segura con estado cifrado (SEV-ES) y la virtualizac... • http://www.openwall.com/lists/oss-security/2022/08/08/6 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.4EPSS: 0%CPEs: 210EXPL: 0CVE-2021-26340
https://notcve.org/view.php?id=CVE-2021-26340
10 Dec 2021 — A malicious hypervisor in conjunction with an unprivileged attacker process inside an SEV/SEV-ES guest VM may fail to flush the Translation Lookaside Buffer (TLB) resulting in unexpected behavior inside the virtual machine (VM). Un Hypervisor malicioso en conjunción con un proceso de atacante no privilegiado dentro de una máquina virtual invitada SEV/SEV-ES puede producir un fallo en el vaciado de la Memoria Intermedia de Traducción (TLB), resultando en un comportamiento no esperado dentro de la máquina vir... • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1023 •
CVSS: 7.8EPSS: 0%CPEs: 114EXPL: 0CVE-2020-12944
https://notcve.org/view.php?id=CVE-2020-12944
16 Nov 2021 — Insufficient validation of BIOS image length by ASP Firmware could lead to arbitrary code execution. Una validación insuficiente de la longitud de la imagen de la BIOS por parte de ASP Firmware podría conducir a la ejecución de código arbitrario • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1027 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 114EXPL: 0CVE-2021-26321
https://notcve.org/view.php?id=CVE-2021-26321
16 Nov 2021 — Insufficient ID command validation in the SEV Firmware may allow a local authenticated attacker to perform a denial of service of the PSP. Una comprobación insuficiente del comando ID en el Firmware SEV puede permitir a un atacante local autenticado llevar a cabo una denegación de servicio de la PSP • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 • CWE-20: Improper Input Validation CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 5.5EPSS: 0%CPEs: 114EXPL: 0CVE-2021-26320
https://notcve.org/view.php?id=CVE-2021-26320
16 Nov 2021 — Insufficient validation of the AMD SEV Signing Key (ASK) in the SEND_START command in the SEV Firmware may allow a local authenticated attacker to perform a denial of service of the PSP Una comprobación insuficiente de la clave de firma de AMD SEV (ASK) en el comando SEND_START en el firmware de SEV puede permitir a un atacante local autenticado llevar a cabo una denegación de servicio de la PSP • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 • CWE-295: Improper Certificate Validation •
CVSS: 7.5EPSS: 0%CPEs: 114EXPL: 0CVE-2021-26322
https://notcve.org/view.php?id=CVE-2021-26322
16 Nov 2021 — Persistent platform private key may not be protected with a random IV leading to a potential “two time pad attack”. La clave privada de la plataforma persistente puede no estar protegida con un IV aleatorio, conllevando a un potencial "two time pad attack" • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1021 • CWE-320: Key Management Errors CWE-330: Use of Insufficiently Random Values •