Back to search
CVE-2021-4093
Published: Feb 18, 2022
Modified: Aug 3, 2024
PUBLISHED
Description
A flaw was found in the KVM's AMD code for supporting the Secure Encrypted Virtualization-Encrypted State (SEV-ES). A KVM guest using SEV-ES can trigger out-of-bounds reads and writes in the host kernel via a malicious VMGEXIT for a string I/O instruction (for example, outs or ins) using the exit reason SVM_EXIT_IOIO. This issue results in a crash of the entire system or a potential guest-to-host escape scenario.
| Vendor | Product | Versions |
|---|---|---|
n/a | kernel | affected kernel 5.15 |
Weaknesses (CWE)
References
https://bugzilla.redhat.com/show_bug.cgi?id=2028584
x_refsource_MISC
https://bugs.chromium.org/p/project-zero/issues/detail?id=2222
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now