Known Vulnerabilities
CVE-2023-31356
Incomplete system memory cleanup in SEV firmware could allow a privileged attacker to corrupt guest private memory, potentially resulting in a loss of data integrity.
MEDIUM
CVSS 4.4
Published Aug 13, 2024
CVE-2023-20584
IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity.
MEDIUM
CVSS 5.3
Published Aug 13, 2024