CVE-2023-31351 | THREATINT

Description

Improper restriction of operations in the IOMMU could allow a malicious hypervisor to access guest private memory resulting in loss of integrity.

PUBLISHED Reserved 2023-04-27 | Published 2025-09-06 | Updated 2025-09-08 | Assigner AMD

MEDIUM: 5.3CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N

Problem types

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

Product status

Default status

affected

Milan 100C

unaffected

Default status

affected

Genoa 100C

unaffected

Default status

affected

Genoa 100C

unaffected

Default status

affected

EmbMilanPI-SP3 1.0.0.9

unaffected

Default status

affected

EmbGenoaPI-SP5 1.0.0.7

unaffected

References

www.amd.com/...es/product-security/bulletin/AMD-SB-5007.html

www.amd.com/...es/product-security/bulletin/AMD-SB-3014.html

cve.org (CVE-2023-31351)

nvd.nist.gov (CVE-2023-31351)

Download JSON

help @ threatint.eu