CVE-2022-23830

Advisory lineage Upstream: 0 Downstream: 6

Downstream

SUSE-SU-2023:4654-1 SUSE-SU-2023:4655-1 SUSE-SU-2023:4660-1 SUSE-SU-2023:4664-1 SUSE-SU-2023:4665-1 SUSE-SU-2024:2376-1

Modified

Published: 14 Nov 2023, 18:53

Last modified:03 Aug 2024, 03:51

Vulnerability Summary

Overall Risk (default)

low

21/100

CVSS Score

5.3 MEDIUM

v3.1 (nvd)

EPSS Score

0.08% LOW

0% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

14 Nov 2023, 18:53

Published

Vulnerability first disclosed

03 Aug 2024, 03:51

Last Modified

Vulnerability information updated

Description

SMM configuration may not be immutable, as intended, when SNP is enabled resulting in a potential limited loss of guest memory integrity.

CVSS Metrics

v3.1•LOW•Score: 1.9CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:N/I:L/A:N
v3.1•MEDIUM•Score: 5.3CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

EPSS Trends

Current EPSS score: 0.08%• Percentile: 23%

Affected Systems

amd•3rd gen amd epyc™ processors
various
amd•4th gen amd epy™ processors
various
amd•amd epyc™ embedded 7003
various
amd•epyc_7203_firmware
< milanpi_1.0.0.a
amd•epyc_7203p_firmware
< milanpi_1.0.0.a
amd•epyc_72f3_firmware
< milanpi_1.0.0.a
amd•epyc_7303_firmware
< milanpi_1.0.0.a
amd•epyc_7303p_firmware
< milanpi_1.0.0.a
amd•epyc_7313_firmware
< milanpi_1.0.0.a
amd•epyc_7313p_firmware
< milanpi_1.0.0.a
amd•epyc_7343_firmware
< milanpi_1.0.0.a
amd•epyc_7373x_firmware
< milanpi_1.0.0.a
amd•epyc_73f3_firmware
< milanpi_1.0.0.a
amd•epyc_7413_firmware
< milanpi_1.0.0.a
amd•epyc_7443_firmware
< milanpi_1.0.0.a
amd•epyc_7443p_firmware
< milanpi_1.0.0.a
amd•epyc_7453_firmware
< milanpi_1.0.0.a
amd•epyc_7473x_firmware
< milanpi_1.0.0.a
amd•epyc_74f3_firmware
< milanpi_1.0.0.a
amd•epyc_7513_firmware
< milanpi_1.0.0.a
amd•epyc_7543_firmware
< milanpi_1.0.0.a
amd•epyc_7543p_firmware
< milanpi_1.0.0.a
amd•epyc_7573x_firmware
< milanpi_1.0.0.a
amd•epyc_75f3_firmware
< milanpi_1.0.0.a
amd•epyc_7643_firmware
< milanpi_1.0.0.a
amd•epyc_7643p_firmware
< milanpi_1.0.0.a
amd•epyc_7663_firmware
< milanpi_1.0.0.a
amd•epyc_7663p_firmware
< milanpi_1.0.0.a
amd•epyc_7713_firmware
< milanpi_1.0.0.a
amd•epyc_7713p_firmware
< milanpi_1.0.0.a
amd•epyc_7763_firmware
< milanpi_1.0.0.a
amd•epyc_7773x_firmware
< milanpi_1.0.0.a
amd•epyc_8024p_firmware
< genoapi_1.0.0.1
amd•epyc_8024pn_firmware
< genoapi_1.0.0.1
amd•epyc_8124p_firmware
< genoapi_1.0.0.1
amd•epyc_8124pn_firmware
< genoapi_1.0.0.1
amd•epyc_8224p_firmware
< genoapi_1.0.0.1
amd•epyc_8224pn_firmware
< genoapi_1.0.0.1
amd•epyc_8324p_firmware
< genoapi_1.0.0.1
amd•epyc_8324pn_firmware
< genoapi_1.0.0.1
amd•epyc_8434p_firmware
< genoapi_1.0.0.1
amd•epyc_8434pn_firmware
< genoapi_1.0.0.1
amd•epyc_8534p_firmware
< genoapi_1.0.0.1
amd•epyc_8534pn_firmware
< genoapi_1.0.0.1
amd•epyc_9124_firmware
< genoapi_1.0.0.1
amd•epyc_9174f_firmware
< genoapi_1.0.0.1
amd•epyc_9184x_firmware
< genoapi_1.0.0.1
amd•epyc_9224_firmware
< genoapi_1.0.0.1
amd•epyc_9254_firmware
< genoapi_1.0.0.1
amd•epyc_9274f_firmware
< genoapi_1.0.0.1

Showing first 50 affected entries in server-rendered view.