Home
MEDIUM: 5.3 CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:NDefault status
affected
Milan PI 1.0.0.D
unaffected
SEV FW 1.55.22 (hex 1.37.16)
unaffected
Default status
affected
Genoa PI 1.0.0.D
unaffected
SEV FW 1.55.38 (hex 1.37.26)
unaffected
Description
Improper input validation for DIMM serial presence detect (SPD) metadata could allow an attacker with physical access, ring0 access on a system with a non-compliant DIMM, or control over the Root of Trust for BIOS update, to potentially overwrite guest memory resulting in loss of guest data integrity.
Problem types
CWE-20 Improper input validation
Product status
Milan PI 1.0.0.D
SEV FW 1.55.22 (hex 1.37.16)
Genoa PI 1.0.0.D
SEV FW 1.55.38 (hex 1.37.26)
References
www.amd.com/...es/product-security/bulletin/amd-sb-3015.html