Vulnerability Description
IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypass RMP checks in SEV-SNP, potentially leading to a loss of guest integrity.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Amd | Epyc 8024Pn Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8024Pn | - |
| Amd | Epyc 8024P Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8024P | - |
| Amd | Epyc 8124Pn Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8124Pn | - |
| Amd | Epyc 8124P Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8124P | - |
| Amd | Epyc 8224Pn Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8224Pn | - |
| Amd | Epyc 8224P Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8224P | - |
| Amd | Epyc 8324Pn Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8324Pn | - |
| Amd | Epyc 8324P Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8324P | - |
| Amd | Epyc 8434Pn Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8434Pn | - |
| Amd | Epyc 8434P Firmware | < genoapi_1.0.0.b |
| Amd | Epyc 8434P | - |
References
FAQ
What is CVE-2023-20584?
CVE-2023-20584 is a vulnerability with a CVSS score of 5.3 (MEDIUM). IOMMU improperly handles certain special address ranges with invalid device table entries (DTEs), which may allow an attacker with privileges and a compromised Hypervisor to induce DTE faults to bypas...
How severe is CVE-2023-20584?
CVE-2023-20584 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-20584?
Check the references section above for vendor advisories and patch information. Affected products include: Amd Epyc 8024Pn Firmware, Amd Epyc 8024Pn, Amd Epyc 8024P Firmware, Amd Epyc 8024P, Amd Epyc 8124Pn Firmware.