Описание
Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to potentially overwrite a guest's memory or UMC seed resulting in loss of confidentiality and integrity.
Затрагиваемое ПО
Amd Epyc 7203 firmwareAmd Epyc 7203Amd Epyc 7203p firmwareAmd Epyc 7203pAmd Epyc 72f3 firmwareAmd Epyc 72f3Amd Epyc 7303 firmwareAmd Epyc 7303Amd Epyc 7303p firmwareAmd Epyc 7303pAmd Epyc 7313 firmwareAmd Epyc 7313Amd Epyc 7313p firmwareAmd Epyc 7313pAmd Epyc 7343 firmwareAmd Epyc 7343Amd Epyc 73f3 firmwareAmd Epyc 73f3Amd Epyc 7373x firmwareAmd Epyc 7373xAmd Epyc 7413 firmwareAmd Epyc 7413Amd Epyc 7443 firmwareAmd Epyc 7443Amd Epyc 7443p firmware
CVSS
| Балл | 7.9 — высокая |
| Вектор | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N |
Источники
https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html