CVE-2021-26403

Summary

Insufficient checks in SEV may lead to a malicious hypervisor disclosing the launch secret potentially resulting in compromise of VM confidentiality.

Affected Software

VendorProductVersion RangeStatus
AMD1st Gen EPYCvariousaffected
AMD2nd Gen EPYCvariousaffected

Weaknesses

  • n/a

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References