CVE-2023-20585

Published: Apr 16, 2026

Modified: Apr 16, 2026

PUBLISHED

Description

Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity.

Vendor	Product	Versions
AMD	AMD EPYC™ 7003 Series Processors	unaffected `SEV FW 1.37.23`
AMD	AMD EPYC™ 9004 Series Processors	unaffected `SEV FW 1.37.31`
AMD	AMD EPYC™ Embedded 7003 Series Processors	unaffected `EmbMilanPI-SP3 1.0.0.B`
AMD	AMD EPYC™ Embedded 9004 Series Processors	unaffected `EmbGenoaPI-1.0.0.A`

Weaknesses (CWE)

CWE-788

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3016.html

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-20585

Description

Affected Products

Weaknesses (CWE)

References