CVE-2024-21978
HIGH EPSS 38.6%
Published Aug 5, 20241y ago · Modified Jun 17, 20261w ago
7.9 CVSS 3.1
Published Aug 5, 2024 1y ago
Last Modified Jun 17, 2026 1w ago
Description
Improper input validation in SEV-SNP could allow a malicious hypervisor to read or overwrite guest memory potentially leading to data leakage or data corruption.
CVSS Details
Base Score
Exploitability
Impact
Vector string
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:N Attack Vector Local
Attack Complexity Low
Privileges Required High
User Interaction None
Scope Changed
Confidentiality High
Integrity High
Availability None
Threat Intelligence
EPSS Exploit Probability
38.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-20 Improper Input Validation Validation
Affected Products 172
| Vendor | Product | Version | Range |
|---|---|---|---|
| amd | epyc_7203_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7203 | * | any |
| amd | epyc_7203p_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7203p | * | any |
| amd | epyc_72f3_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_72f3 | * | any |
| amd | epyc_7303_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7303 | * | any |
| amd | epyc_7303p_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7303p | * | any |
| amd | epyc_7313_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7313 | * | any |
| amd | epyc_7313p_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7313p | * | any |
| amd | epyc_7343_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7343 | * | any |
| amd | epyc_73f3_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_73f3 | * | any |
| amd | epyc_7373x_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7373x | * | any |
| amd | epyc_7413_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7413 | * | any |
| amd | epyc_7443_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7443 | * | any |
| amd | epyc_7443p_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7443p | * | any |
| amd | epyc_74f3_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_74f3 | * | any |
| amd | epyc_7453_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7453 | * | any |
| amd | epyc_7473x_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7473x | * | any |
| amd | epyc_7513_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7513 | * | any |
| amd | epyc_7543_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7543 | * | any |
| amd | epyc_7543p_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7543p | * | any |
| amd | epyc_75f3_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_75f3 | * | any |
| amd | epyc_7573x_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7573x | * | any |
| amd | epyc_7643_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7643 | * | any |
| amd | epyc_7773x_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7773x | * | any |
| amd | epyc_7643p_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7643p | * | any |
| amd | epyc_7663_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7663 | * | any |
| amd | epyc_7663p_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7663p | * | any |
| amd | epyc_7713_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7713 | * | any |
| amd | epyc_7713p_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7713p | * | any |
| amd | epyc_7763_firmware | * | <milanpi_1.0.0.d |
| amd | epyc_7763 | * | any |
| amd | epyc_8024pn_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8024pn | * | any |
| amd | epyc_8024p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8024p | * | any |
| amd | epyc_8124pn_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8124pn | * | any |
| amd | epyc_8124p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8124p | * | any |
| amd | epyc_8224pn_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8224pn | * | any |
| amd | epyc_8224p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8224p | * | any |
| amd | epyc_8324pn_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8324pn | * | any |
| amd | epyc_8324p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8324p | * | any |
| amd | epyc_8434pn_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8434pn | * | any |
| amd | epyc_8434p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8434p | * | any |
| amd | epyc_8534pn_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8534pn | * | any |
| amd | epyc_8534p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_8534p | * | any |
| amd | epyc_9734_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9734 | * | any |
| amd | epyc_9754s_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9754s | * | any |
| amd | epyc_9754_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9754 | * | any |
| amd | epyc_9184x_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9184x | * | any |
| amd | epyc_9384x_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9384x | * | any |
| amd | epyc_9684x_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9684x | * | any |
| amd | epyc_9124_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9124 | * | any |
| amd | epyc_9174f_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9174f | * | any |
| amd | epyc_9224_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9224 | * | any |
| amd | epyc_9254_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9254 | * | any |
| amd | epyc_9274f_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9274f | * | any |
| amd | epyc_9334_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9334 | * | any |
| amd | epyc_9354_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9354 | * | any |
| amd | epyc_9354p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9354p | * | any |
| amd | epyc_9374f_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9374f | * | any |
| amd | epyc_9454_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9454 | * | any |
| amd | epyc_9454p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9454p | * | any |
| amd | epyc_9474f_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9474f | * | any |
| amd | epyc_9534_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9534 | * | any |
| amd | epyc_9554_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9554 | * | any |
| amd | epyc_9554p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9554p | * | any |
| amd | epyc_9634_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9634 | * | any |
| amd | epyc_9654_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9654 | * | any |
| amd | epyc_9654p_firmware | * | <genoapi_1.0.0.c |
| amd | epyc_9654p | * | any |
| amd | epyc_embedded_7313_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7313 | * | any |
| amd | epyc_embedded_7313p_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7313p | * | any |
| amd | epyc_embedded_7413_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7413 | * | any |
| amd | epyc_embedded_7443_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7443 | * | any |
| amd | epyc_embedded_7443p_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7443p | * | any |
| amd | epyc_embedded_7543_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7543 | * | any |
| amd | epyc_embedded_7543p_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7543p | * | any |
| amd | epyc_embedded_7643_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7643 | * | any |
| amd | epyc_embedded_7713_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7713 | * | any |
| amd | epyc_embedded_7713p_firmware | * | <embmilanpi-sp3_1.0.0.9 |
| amd | epyc_embedded_7713p | * | any |
| amd | epyc_embedded_9124_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9124 | * | any |
| amd | epyc_embedded_9254_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9254 | * | any |
| amd | epyc_embedded_9354_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9354 | * | any |
| amd | epyc_embedded_9354p_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9354p | * | any |
| amd | epyc_embedded_9454_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9454 | * | any |
| amd | epyc_embedded_9454p_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9454p | * | any |
| amd | epyc_embedded_9534_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9534 | * | any |
| amd | epyc_embedded_9554_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9554 | * | any |
| amd | epyc_embedded_9554p_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9554p | * | any |
| amd | epyc_embedded_9654_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9654 | * | any |
| amd | epyc_embedded_9654p_firmware | * | <embgenoapi-sp5_1.0.0.7 |
| amd | epyc_embedded_9654p | * | any |
References 1
- https https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.