SEV-SNP
by AMD
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-23818 | 0.00 | — | 0.01 | May 9, 2023 | Insufficient input validation on the model specific register: VM_HSAVE_PA may potentially lead to loss of SEV-SNP guest memory integrity. | |||
| CVE-2021-26328 | 0.00 | — | 0.00 | Jan 10, 2023 | Failure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of memory integrity for SNP guests. | |||
| CVE-2021-26349 | 0.00 | — | 0.00 | May 11, 2022 | Failure to assign a new report ID to an imported guest may potentially result in an SEV-SNP guest VM being tricked into trusting a dishonest Migration Agent (MA). |
- CVE-2022-23818May 9, 2023risk 0.00cvss —epss 0.01
Insufficient input validation on the model specific register: VM_HSAVE_PA may potentially lead to loss of SEV-SNP guest memory integrity.
- CVE-2021-26328Jan 10, 2023risk 0.00cvss —epss 0.00
Failure to verify the mode of CPU execution at the time of SNP_INIT may lead to a potential loss of memory integrity for SNP guests.
- CVE-2021-26349May 11, 2022risk 0.00cvss —epss 0.00
Failure to assign a new report ID to an imported guest may potentially result in an SEV-SNP guest VM being tricked into trusting a dishonest Migration Agent (MA).