CVE-2023-20585

Insufficient RMP Checks in IOMMU Allow Host Buffer Out‑of‑Bounds Access

Description

Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity.

INFO

Published Date :

2026-04-16T18:42:28.281Z

Last Modified :

2026-04-16T19:12:06.991Z

Source :

AMD

AFFECTED PRODUCTS

The following products are affected by CVE-2023-20585 vulnerability.

Vendors	Products
Amd	Epyc 7003 Series Processors Epyc 9004 Series Processors Epyc Embedded 7003 Series Processors Epyc Embedded 9004 Series Processors

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-20585.

URL	Resource
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3016.html

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Attack Requirements

Privileges Required

User Interaction

VS Confidentiality

VS Integrity

VS Availability

SS Confidentiality

SS Integrity

SS Availability