VYPR

SEV

by AMD

CVEs (13)

  • CVE-2024-25743HigMay 15, 2024
    risk 0.46cvss 7.1epss 0.00

    In the Linux kernel through 6.9, an untrusted hypervisor can inject virtual interrupts 0 and 14 at any point in time and can trigger the SIGFPE signal handler in userspace applications. This affects AMD SEV-SNP and AMD SEV-ES.

  • CVE-2025-29939MedFeb 10, 2026
    risk 0.45cvss epss 0.00

    Improper access control in secure encrypted virtualization (SEV) could allow a privileged attacker to write to the reverse map page (RMP) during secure nested paging (SNP) initialization, potentially resulting in a loss of guest memory confidentiality and integrity.

  • CVE-2025-0033MedOct 14, 2025
    risk 0.39cvss 6.0epss 0.00

    Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity.

  • CVE-2025-29948MedFeb 10, 2026
    risk 0.38cvss epss 0.00

    Improper access control in AMD Secure Encrypted Virtualization (SEV) firmware could allow a malicious hypervisor to bypass RMP protections, potentially resulting in a loss of SEV-SNP guest memory integrity.

  • CVE-2025-29934MedNov 21, 2025
    risk 0.34cvss 5.3epss 0.00

    A bug within some AMD CPUs could allow a local admin-privileged attacker to run a SEV-SNP guest using stale TLB entries, potentially resulting in loss of data integrity.

  • CVE-2023-20582MedFeb 11, 2025
    risk 0.34cvss 5.3epss 0.00

    Improper handling of invalid nested page table entries in the IOMMU may allow a privileged attacker to induce page table entry (PTE) faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest memory integrity.

  • CVE-2025-0029LowFeb 10, 2026
    risk 0.12cvss epss 0.00

    Improper handling of error condition during host-induced faults can allow a local high-privileged attack to selectively drop guest DMA writes, potentially resulting in a loss of SEV-SNP guest memory integrity

  • CVE-2021-26406May 9, 2023
    risk 0.00cvss epss 0.00

    Insufficient validation in parsing Owner's Certificate Authority (OCA) certificates in SEV (AMD Secure Encrypted Virtualization) and SEV-ES user application can lead to a host crash potentially resulting in denial of service.

  • CVE-2021-26403Jan 10, 2023
    risk 0.00cvss epss 0.00

    Insufficient checks in SEV may lead to a malicious hypervisor disclosing the launch secret potentially resulting in compromise of VM confidentiality.

  • CVE-2021-46744May 11, 2022
    risk 0.00cvss epss 0.00

    An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time.

  • CVE-2021-26342May 11, 2022
    risk 0.00cvss epss 0.00

    In SEV guest VMs, the CPU may fail to flush the Translation Lookaside Buffer (TLB) following a particular sequence of operations that includes creation of a new virtual machine control block (VMCB). The failure to flush the TLB may cause the microcode to use stale TLB…

  • CVE-2021-26311May 13, 2021
    risk 0.00cvss epss 0.02

    In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not detected by the attestation mechanism which could be used by a malicious hypervisor to potentially lead to arbitrary code execution within the guest VM if a malicious administrator has…

  • CVE-2020-12967May 13, 2021
    risk 0.00cvss epss 0.02

    The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.