CVE-2023-20581
LOWAMD EPYC 9004 Processors - Improper Access Control in IOMMU
Title source: llmDescription
Improper access control in the IOMMU may allow a privileged attacker to bypass RMP checks, potentially leading to a loss of guest memory integrity.
References (2)
Core 2
Core References
Scores
CVSS v3
2.5
EPSS
0.0016
EPSS Percentile
5.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:L/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-1284
Status
published
Products (3)
AMD/AMD EPYC™ 9004 Processors
GenoaPI 1.0.0.C
AMD/AMD EPYC™ 9004 Processors
SEV FW1.55.36
AMD/AMD EPYC™ Embedded 9004
EmbGenoaPI-SP5 1.0.0.7
Published
Feb 11, 2025
Tracked Since
Feb 18, 2026