CVE-2020-12967

Summary

The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.

Affected Software

VendorProductVersion RangeStatus
AMDSEV/SEV-ESunspecified < SEV-SNPaffected

Weaknesses

  • Arbitrary Code Execution

ADP Enrichment

CVE Program Container

Additional References

References