CVE-2018-8930
First published: Thu Mar 22 2018(Updated: )
The AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips have insufficient enforcement of Hardware Validated Boot, aka MASTERKEY-1, MASTERKEY-2, and MASTERKEY-3.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Amd Ryzen Mobile Firmware | ||
| Amd Ryzen Mobile | ||
| Amd Ryzen Pro Firmware | ||
| Amd Ryzen Pro | ||
| Amd Epyc Server Firmware | ||
| AMD EPYC Server | ||
| Amd Ryzen Firmware | ||
| AMD CPUs |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://amdflaws.com/
- https://blog.trailofbits.com/2018/03/15/amd-flaws-technical-summary/
- https://community.amd.com/community/amd-corporate/blog/2018/03/21/initial-amd-technical-assessment-of-cts-labs-research
- https://safefirmware.com/amdflaws_whitepaper.pdf
- https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03841en_us
Frequently Asked Questions
What is the severity of CVE-2018-8930?
CVE-2018-8930 has been classified as a high severity vulnerability due to its impact on Hardware Validated Boot enforcement.
How do I fix CVE-2018-8930?
To address CVE-2018-8930, users must update their AMD firmware to the latest version provided by AMD.
Which products are affected by CVE-2018-8930?
CVE-2018-8930 affects the AMD EPYC Server, Ryzen, Ryzen Pro, and Ryzen Mobile processor chips.
What is the main issue described by CVE-2018-8930?
The main issue of CVE-2018-8930 is the insufficient enforcement of Hardware Validated Boot in certain AMD processors.
Is CVE-2018-8930 exploitable remotely?
CVE-2018-8930 is not considered remotely exploitable, but it poses serious risks if an attacker has local access.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/references
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/amd
- canonical/amd ryzen mobile firmware
- canonical/amd ryzen mobile
- canonical/amd ryzen pro firmware
- canonical/amd ryzen pro
- canonical/amd epyc server firmware
- canonical/amd epyc server
- canonical/amd ryzen firmware
- canonical/amd cpus