The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.

Metrics

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

The EPSS score is 0.01611.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Amd Subscribe
Epyc 7232p Subscribe
Epyc 7251 Subscribe
Epyc 7252 Subscribe
Epyc 7261 Subscribe
Epyc 7262 Subscribe
Epyc 7272 Subscribe
Epyc 7281 Subscribe
Epyc 7282 Subscribe
Epyc 72f3 Subscribe
Epyc 7301 Subscribe
Epyc 7302 Subscribe
Epyc 7302p Subscribe
Epyc 7313 Subscribe
Epyc 7313p Subscribe
Epyc 7343 Subscribe
Epyc 7351 Subscribe
Epyc 7351p Subscribe
Epyc 7352 Subscribe
Epyc 7371 Subscribe
Epyc 73f3 Subscribe
Epyc 7401 Subscribe
Epyc 7401p Subscribe
Epyc 7402 Subscribe
Epyc 7402p Subscribe
Epyc 7413 Subscribe
Epyc 7443 Subscribe
Epyc 7443p Subscribe
Epyc 7451 Subscribe
Epyc 7452 Subscribe
Epyc 7453 Subscribe
Epyc 74f3 Subscribe
Epyc 7501 Subscribe
Epyc 7502 Subscribe
Epyc 7502p Subscribe
Epyc 7513 Subscribe
Epyc 7532 Subscribe
Epyc 7542 Subscribe
Epyc 7543 Subscribe
Epyc 7543p Subscribe
Epyc 7551 Subscribe
Epyc 7551p Subscribe
Epyc 7552 Subscribe
Epyc 75f3 Subscribe
Epyc 7601 Subscribe
Epyc 7642 Subscribe
Epyc 7643 Subscribe
Epyc 7662 Subscribe
Epyc 7663 Subscribe
Epyc 7702 Subscribe
Epyc 7702p Subscribe
Epyc 7713 Subscribe
Epyc 7713p Subscribe
Epyc 7742 Subscribe
Epyc 7763 Subscribe
Epyc 7f32 Subscribe
Epyc 7f52 Subscribe
Epyc 7f72 Subscribe
Epyc 7h12 Subscribe
Epyc Embedded 3101 Subscribe
Epyc Embedded 3151 Subscribe
Epyc Embedded 3201 Subscribe
Epyc Embedded 3251 Subscribe
Epyc Embedded 3255 Subscribe
Epyc Embedded 3351 Subscribe
Epyc Embedded 3451 Subscribe

Configuration 1 [-]

OR cpe:2.3:h:amd:epyc_7232p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7251:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7252:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7261:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7262:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7272:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7281:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7282:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_72f3:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7301:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7302:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7302p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7313:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7313p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7343:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7351:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7351p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7352:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7371:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_73f3:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7401:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7401p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7402:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7402p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7413:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7443:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7443p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7451:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7452:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7453:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_74f3:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7501:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7502:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7502p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7513:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7532:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7542:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7543:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7543p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7551:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7551p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7552:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_75f3:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7601:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7642:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7662:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7702:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7702p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7742:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7f32:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7f52:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7f72:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_7h12:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_embedded_3101:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_embedded_3151:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_embedded_3201:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_embedded_3251:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_embedded_3255:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_embedded_3351:-:*:*:*:*:*:*:*
cpe:2.3:h:amd:epyc_embedded_3451:-:*:*:*:*:*:*:*

No data.

No data.

Advisories
Source ID Title
EUVD EUVD EUVD-2020-5247 The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1004 cve-icon cve-icon
History

No history.

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: AMD

Published:

Updated: 2024-09-16T18:55:13.544Z

Reserved: 2020-05-15T00:00:00

Link: CVE-2020-12967

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-05-13T12:15:07.443

Modified: 2024-11-21T05:00:36.230

Link: CVE-2020-12967

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses