CVE-2023-20585

Vulnerability Description

Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity.

Related Weaknesses (CWE)

CWE-788

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3016.html

FAQ

What is CVE-2023-20585?

CVE-2023-20585 is a documented vulnerability. Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in ...

How severe is CVE-2023-20585?

CVSS scoring is not yet available for CVE-2023-20585. Check NVD for updates.

Is there a patch for CVE-2023-20585?

Check the references section above for vendor advisories and patch information. Review vendor security bulletins for remediation guidance.