CVE-2020-12967: AMD Secure Encrypted Virtualization
First published: Thu May 13 2021(Updated: )
The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.
Credit: psirt@amd.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Amd Epyc 7232p | ||
| Amd Epyc 7251 | ||
| Amd Epyc 7252 | ||
| Amd Epyc 7261 | ||
| Amd Epyc 7262 | ||
| Amd Epyc 7272 | ||
| Amd Epyc 7281 | ||
| Amd Epyc 7282 | ||
| Amd Epyc 72f3 | ||
| Amd Epyc 7301 | ||
| Amd Epyc 7302 | ||
| Amd Epyc 7302p | ||
| Amd Epyc 7313 | ||
| Amd Epyc 7313p | ||
| Amd Epyc 7343 | ||
| Amd Epyc 7351 | ||
| Amd Epyc 7351p | ||
| Amd Epyc 7352 | ||
| Amd Epyc 7371 | ||
| Amd Epyc 73f3 | ||
| Amd Epyc 7401 | ||
| Amd Epyc 7401p | ||
| Amd Epyc 7402 | ||
| Amd Epyc 7402p | ||
| Amd Epyc 7413 | ||
| Amd Epyc 7443 | ||
| Amd Epyc 7443p | ||
| Amd Epyc 7451 | ||
| Amd Epyc 7452 | ||
| Amd Epyc 7453 | ||
| Amd Epyc 74f3 | ||
| Amd Epyc 7501 | ||
| Amd Epyc 7502 | ||
| Amd Epyc 7502p | ||
| Amd Epyc 7513 | ||
| Amd Epyc 7532 | ||
| Amd Epyc 7542 | ||
| Amd Epyc 7543 | ||
| Amd Epyc 7543p | ||
| Amd Epyc 7551 | ||
| Amd Epyc 7551p | ||
| Amd Epyc 7552 | ||
| Amd Epyc 75f3 | ||
| Amd Epyc 7601 | ||
| Amd Epyc 7642 | ||
| Amd Epyc 7643 | ||
| Amd Epyc 7662 | ||
| Amd Epyc 7663 | ||
| Amd Epyc 7702 | ||
| Amd Epyc 7702p | ||
| Amd Epyc 7713 | ||
| Amd Epyc 7713p | ||
| Amd Epyc 7742 | ||
| Amd Epyc 7763 | ||
| Amd Epyc 7f32 | ||
| Amd Epyc 7f52 | ||
| Amd Epyc 7f72 | ||
| Amd Epyc 7h12 | ||
| Amd Epyc Embedded 3101 | ||
| Amd Epyc Embedded 3151 | ||
| Amd Epyc Embedded 3201 | ||
| Amd Epyc Embedded 3251 | ||
| Amd Epyc Embedded 3255 | ||
| Amd Epyc Embedded 3351 | ||
| Amd Epyc Embedded 3451 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2020-12967?
CVE-2020-12967 is a vulnerability in the AMD SEV/SEV-ES feature that allows arbitrary code execution within the guest VM.
How can the lack of nested page table protection in AMD SEV/SEV-ES feature be exploited?
The lack of nested page table protection can be exploited by a malicious administrator who has access to compromise the server hypervisor.
What is the severity of CVE-2020-12967?
CVE-2020-12967 has a severity rating of critical.
Which software products are affected by CVE-2020-12967?
The software products affected by CVE-2020-12967 include AMD Epyc processors and Microsoft Windows 11.
Where can I find more information about CVE-2020-12967?
You can find more information about CVE-2020-12967 on the AMD Product Security Bulletin website.
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/references
- agent/severity
- agent/weakness
- agent/author
- agent/softwarecombine
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/title
- agent/last-modified-date
- agent/tags
- agent/first-publish-date
- agent/event
- vendor/amd
- canonical/amd epyc 7232p
- canonical/amd epyc 7251
- canonical/amd epyc 7252
- canonical/amd epyc 7261
- canonical/amd epyc 7262
- canonical/amd epyc 7272
- canonical/amd epyc 7281
- canonical/amd epyc 7282
- canonical/amd epyc 72f3
- canonical/amd epyc 7301
- canonical/amd epyc 7302
- canonical/amd epyc 7302p
- canonical/amd epyc 7313
- canonical/amd epyc 7313p
- canonical/amd epyc 7343
- canonical/amd epyc 7351
- canonical/amd epyc 7351p
- canonical/amd epyc 7352
- canonical/amd epyc 7371
- canonical/amd epyc 73f3
- canonical/amd epyc 7401
- canonical/amd epyc 7401p
- canonical/amd epyc 7402
- canonical/amd epyc 7402p
- canonical/amd epyc 7413
- canonical/amd epyc 7443
- canonical/amd epyc 7443p
- canonical/amd epyc 7451
- canonical/amd epyc 7452
- canonical/amd epyc 7453
- canonical/amd epyc 74f3
- canonical/amd epyc 7501
- canonical/amd epyc 7502
- canonical/amd epyc 7502p
- canonical/amd epyc 7513
- canonical/amd epyc 7532
- canonical/amd epyc 7542
- canonical/amd epyc 7543
- canonical/amd epyc 7543p
- canonical/amd epyc 7551
- canonical/amd epyc 7551p
- canonical/amd epyc 7552
- canonical/amd epyc 75f3
- canonical/amd epyc 7601
- canonical/amd epyc 7642
- canonical/amd epyc 7643
- canonical/amd epyc 7662
- canonical/amd epyc 7663
- canonical/amd epyc 7702
- canonical/amd epyc 7702p
- canonical/amd epyc 7713
- canonical/amd epyc 7713p
- canonical/amd epyc 7742
- canonical/amd epyc 7763
- canonical/amd epyc 7f32
- canonical/amd epyc 7f52
- canonical/amd epyc 7f72
- canonical/amd epyc 7h12
- canonical/amd epyc embedded 3101
- canonical/amd epyc embedded 3151
- canonical/amd epyc embedded 3201
- canonical/amd epyc embedded 3251
- canonical/amd epyc embedded 3255
- canonical/amd epyc embedded 3351
- canonical/amd epyc embedded 3451