Known Vulnerabilities
CVE-2023-20591
Improper re-initialization of IOMMU during the DRTM event may permit an untrusted platform configuration to persist, allowing an attacker to read or modify hypervisor memory, potentially resulting in loss of confidentiality, integrity, and availability.
MEDIUM
CVSS 6.5
Published Aug 13, 2024
CVE-2024-21980
Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to potentially overwrite a guest's memory or UMC seed resulting in loss of confidentiality and integrity.
HIGH
CVSS 7.9
Published Aug 05, 2024
CVE-2024-21978
Improper input validation in SEV-SNP could allow a malicious hypervisor to read or overwrite guest memory potentially leading to data leakage or data corruption.
MEDIUM
CVSS 6.0
Published Aug 05, 2024