QwikSec

Security Database

CVE

CWE

Training

CVE-2020-12966

Published: Feb 4, 2022

Modified: Sep 17, 2024

PUBLISHED

Description

AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted Virtualization with Encrypted State (SEV-ES) and Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). A local authenticated attacker could potentially exploit this vulnerability leading to leaking guest data by the malicious hypervisor.

Vendor	Product	Versions
AMD	1st/2nd/3rd Gen AMD EPYC™ Processors	affected `unspecified - < undefined`

References

https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1013

x_refsource_MISC

[oss-security] 20220808 wolfSSL 5.4.0 fixes CVE-2022-34293 and other issues

mailing-list

x_refsource_MLIST

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.