CVE-2023-31355

linux-firmware: hw:amd: Improper Restriction of Write Operations in SNP Firmware

Description

Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to overwrite a guest's UMC seed potentially allowing reading of memory from a decommissioned guest.

INFO

Published Date :

2024-08-05T16:04:24.813Z

Last Modified :

2024-08-06T14:58:40.899Z

Source :

AMD

AFFECTED PRODUCTS

The following products are affected by CVE-2023-31355 vulnerability.

Vendors	Products
Amd	Epyc 7203 Epyc 7203 Firmware Epyc 7203p Epyc 7203p Firmware Epyc 72f3 Epyc 72f3 Firmware Epyc 7303 Epyc 7303 Firmware Epyc 7303p Epyc 7303p Firmware Epyc 7313 Epyc 7313 Firmware Epyc 7313p Epyc 7313p Firmware Epyc 7343 Epyc 7343 Firmware Epyc 7373x Epyc 7373x Firmware Epyc 73f3 Epyc 73f3 Firmware Epyc 7413 Epyc 7413 Firmware Epyc 7443 Epyc 7443 Firmware Epyc 7443p Epyc 7443p Firmware Epyc 7453 Epyc 7453 Firmware Epyc 7473x Epyc 7473x Firmware Epyc 74f3 Epyc 74f3 Firmware Epyc 7513 Epyc 7513 Firmware Epyc 7543 Epyc 7543 Firmware Epyc 7543p Epyc 7543p Firmware Epyc 7573x Epyc 7573x Firmware Epyc 75f3 Epyc 75f3 Firmware Epyc 7643 Epyc 7643 Firmware Epyc 7643p Epyc 7643p Firmware Epyc 7663 Epyc 7663 Firmware Epyc 7663p Epyc 7663p Firmware Epyc 7713 Epyc 7713 Firmware Epyc 7713p Epyc 7713p Firmware Epyc 7763 Epyc 7763 Firmware Epyc 7773x Epyc 7773x Firmware Epyc 8024p Epyc 8024p Firmware Epyc 8024pn Epyc 8024pn Firmware Epyc 8124p Epyc 8124p Firmware Epyc 8124pn Epyc 8124pn Firmware Epyc 8224p Epyc 8224p Firmware Epyc 8224pn Epyc 8224pn Firmware Epyc 8324p Epyc 8324p Firmware Epyc 8324pn Epyc 8324pn Firmware Epyc 8434p Epyc 8434p Firmware Epyc 8434pn Epyc 8434pn Firmware Epyc 8534p Epyc 8534p Firmware Epyc 8534pn Epyc 8534pn Firmware Epyc 9124 Epyc 9124 Firmware Epyc 9174f Epyc 9174f Firmware Epyc 9184x Epyc 9184x Firmware Epyc 9224 Epyc 9224 Firmware Epyc 9254 Epyc 9254 Firmware Epyc 9274f Epyc 9274f Firmware Epyc 9334 Epyc 9334 Firmware Epyc 9354 Epyc 9354 Firmware Epyc 9354p Epyc 9354p Firmware Epyc 9374f Epyc 9374f Firmware Epyc 9384x Epyc 9384x Firmware Epyc 9454 Epyc 9454 Firmware Epyc 9454p Epyc 9454p Firmware Epyc 9474f Epyc 9474f Firmware Epyc 9534 Epyc 9534 Firmware Epyc 9554 Epyc 9554 Firmware Epyc 9554p Epyc 9554p Firmware Epyc 9634 Epyc 9634 Firmware Epyc 9654 Epyc 9654 Firmware Epyc 9654p Epyc 9654p Firmware Epyc 9684x Epyc 9684x Firmware Epyc 9734 Epyc 9734 Firmware Epyc 9754 Epyc 9754 Firmware Epyc 9754s Epyc 9754s Firmware Epyc Embedded 7313 Epyc Embedded 7313 Firmware Epyc Embedded 7313p Epyc Embedded 7313p Firmware Epyc Embedded 7413 Epyc Embedded 7413 Firmware Epyc Embedded 7443 Epyc Embedded 7443 Firmware Epyc Embedded 7443p Epyc Embedded 7443p Firmware Epyc Embedded 7543 Epyc Embedded 7543 Firmware Epyc Embedded 7543p Epyc Embedded 7543p Firmware Epyc Embedded 7643 Epyc Embedded 7643 Firmware Epyc Embedded 7713 Epyc Embedded 7713 Firmware Epyc Embedded 7713p Epyc Embedded 7713p Firmware Epyc Embedded 9124 Epyc Embedded 9124 Firmware Epyc Embedded 9254 Epyc Embedded 9254 Firmware Epyc Embedded 9354 Epyc Embedded 9354 Firmware Epyc Embedded 9354p Epyc Embedded 9354p Firmware Epyc Embedded 9454 Epyc Embedded 9454 Firmware Epyc Embedded 9454p Epyc Embedded 9454p Firmware Epyc Embedded 9534 Epyc Embedded 9534 Firmware Epyc Embedded 9554 Epyc Embedded 9554 Firmware Epyc Embedded 9554p Epyc Embedded 9554p Firmware Epyc Embedded 9654 Epyc Embedded 9654 Firmware Epyc Embedded 9654p Epyc Embedded 9654p Firmware

Vendors

Products

Amd

Epyc 7203
Epyc 7203 Firmware
Epyc 7203p
Epyc 7203p Firmware
Epyc 72f3
Epyc 72f3 Firmware
Epyc 7303
Epyc 7303 Firmware
Epyc 7303p
Epyc 7303p Firmware
Epyc 7313
Epyc 7313 Firmware
Epyc 7313p
Epyc 7313p Firmware
Epyc 7343
Epyc 7343 Firmware
Epyc 7373x
Epyc 7373x Firmware
Epyc 73f3
Epyc 73f3 Firmware
Epyc 7413
Epyc 7413 Firmware
Epyc 7443
Epyc 7443 Firmware
Epyc 7443p
Epyc 7443p Firmware
Epyc 7453
Epyc 7453 Firmware
Epyc 7473x
Epyc 7473x Firmware
Epyc 74f3
Epyc 74f3 Firmware
Epyc 7513
Epyc 7513 Firmware
Epyc 7543
Epyc 7543 Firmware
Epyc 7543p
Epyc 7543p Firmware
Epyc 7573x
Epyc 7573x Firmware
Epyc 75f3
Epyc 75f3 Firmware
Epyc 7643
Epyc 7643 Firmware
Epyc 7643p
Epyc 7643p Firmware
Epyc 7663
Epyc 7663 Firmware
Epyc 7663p
Epyc 7663p Firmware
Epyc 7713
Epyc 7713 Firmware
Epyc 7713p
Epyc 7713p Firmware
Epyc 7763
Epyc 7763 Firmware
Epyc 7773x
Epyc 7773x Firmware
Epyc 8024p
Epyc 8024p Firmware
Epyc 8024pn
Epyc 8024pn Firmware
Epyc 8124p
Epyc 8124p Firmware
Epyc 8124pn
Epyc 8124pn Firmware
Epyc 8224p
Epyc 8224p Firmware
Epyc 8224pn
Epyc 8224pn Firmware
Epyc 8324p
Epyc 8324p Firmware
Epyc 8324pn
Epyc 8324pn Firmware
Epyc 8434p
Epyc 8434p Firmware
Epyc 8434pn
Epyc 8434pn Firmware
Epyc 8534p
Epyc 8534p Firmware
Epyc 8534pn
Epyc 8534pn Firmware
Epyc 9124
Epyc 9124 Firmware
Epyc 9174f
Epyc 9174f Firmware
Epyc 9184x
Epyc 9184x Firmware
Epyc 9224
Epyc 9224 Firmware
Epyc 9254
Epyc 9254 Firmware
Epyc 9274f
Epyc 9274f Firmware
Epyc 9334
Epyc 9334 Firmware
Epyc 9354
Epyc 9354 Firmware
Epyc 9354p
Epyc 9354p Firmware
Epyc 9374f
Epyc 9374f Firmware
Epyc 9384x
Epyc 9384x Firmware
Epyc 9454
Epyc 9454 Firmware
Epyc 9454p
Epyc 9454p Firmware
Epyc 9474f
Epyc 9474f Firmware
Epyc 9534
Epyc 9534 Firmware
Epyc 9554
Epyc 9554 Firmware
Epyc 9554p
Epyc 9554p Firmware
Epyc 9634
Epyc 9634 Firmware
Epyc 9654
Epyc 9654 Firmware
Epyc 9654p
Epyc 9654p Firmware
Epyc 9684x
Epyc 9684x Firmware
Epyc 9734
Epyc 9734 Firmware
Epyc 9754
Epyc 9754 Firmware
Epyc 9754s
Epyc 9754s Firmware
Epyc Embedded 7313
Epyc Embedded 7313 Firmware
Epyc Embedded 7313p
Epyc Embedded 7313p Firmware
Epyc Embedded 7413
Epyc Embedded 7413 Firmware
Epyc Embedded 7443
Epyc Embedded 7443 Firmware
Epyc Embedded 7443p
Epyc Embedded 7443p Firmware
Epyc Embedded 7543
Epyc Embedded 7543 Firmware
Epyc Embedded 7543p
Epyc Embedded 7543p Firmware
Epyc Embedded 7643
Epyc Embedded 7643 Firmware
Epyc Embedded 7713
Epyc Embedded 7713 Firmware
Epyc Embedded 7713p
Epyc Embedded 7713p Firmware
Epyc Embedded 9124
Epyc Embedded 9124 Firmware
Epyc Embedded 9254
Epyc Embedded 9254 Firmware
Epyc Embedded 9354
Epyc Embedded 9354 Firmware
Epyc Embedded 9354p
Epyc Embedded 9354p Firmware
Epyc Embedded 9454
Epyc Embedded 9454 Firmware
Epyc Embedded 9454p
Epyc Embedded 9454p Firmware
Epyc Embedded 9534
Epyc Embedded 9534 Firmware
Epyc Embedded 9554
Epyc Embedded 9554 Firmware
Epyc Embedded 9554p
Epyc Embedded 9554p Firmware
Epyc Embedded 9654
Epyc Embedded 9654 Firmware
Epyc Embedded 9654p
Epyc Embedded 9654p Firmware

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2023-31355.

URL	Resource
https://https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html
https://nvd.nist.gov/vuln/detail/CVE-2023-31355
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3011.html
https://www.cve.org/CVERecord?id=CVE-2023-31355

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact