What is the severity of CVE-2023-31346?

CVE-2023-31346 is considered a high-severity vulnerability due to potential sensitive information exposure.

How do I fix CVE-2023-31346?

To mitigate CVE-2023-31346, update the affected AMD Epyc firmware to the latest version available that addresses the vulnerability.

Who is affected by CVE-2023-31346?

CVE-2023-31346 affects local authenticated users of certain AMD Epyc processors running vulnerable firmware versions.

What types of exploitation does CVE-2023-31346 allow?

CVE-2023-31346 allows an attacker to access stale data from other guests, potentially leading to information disclosure.

Which products are impacted by CVE-2023-31346?

Products impacted by CVE-2023-31346 include various AMD Epyc processor firmware versions, specifically below milanpi_1.0.0.c.

Vulnerability/
CVE-2023-31346

medium

18/11/2023

13/2/2024

24/10/2024

CVE-2023-31346

First published: Sat Nov 18 2023(Updated: )

AMD SEV-SNP Firmware could allow a local authenticated attacker to obtain sensitive information, caused by the failure to initialize memory. By sending a specially crafted request, an attacker could exploit this vulnerability to access stale data from other guests, and use this information to launch further attacks against the affected system.

Credit: psirt@amd.com

Affected Software	Affected Version	How to fix
IBM QRadar SIEM	<=7.5 - 7.5.0 UP9 IF03
IBM QRadar Incident Forensics	<=7.5 - 7.5.0 UP9 IF03
All of
AMD EPYC 7773X Firmware	<milanpi_1.0.0.c
AMD EPYC 7773X
All of
AMD EPYC 7763 Firmware	<milanpi_1.0.0.c
AMD EPYC 7763 Firmware
All of
AMD EPYC 7713P Firmware	<milanpi_1.0.0.c
AMD EPYC 7713
All of
AMD EPYC 7713P Firmware	<milanpi_1.0.0.c
AMD EPYC 7713P Firmware
All of
AMD EPYC 7663 Firmware	<milanpi_1.0.0.c
AMD EPYC 7663 Firmware
All of
amd epyc 7663p firmware	<milanpi_1.0.0.c
amd epyc 7663p
All of
AMD EPYC 7643 Firmware	<milanpi_1.0.0.c
AMD EPYC 7643
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
amd epyc 7643p
All of
AMD EPYC 7573X Firmware	<milanpi_1.0.0.c
AMD EPYC 7573X
All of
AMD EPYC 75F3 Firmware	<milanpi_1.0.0.c
AMD EPYC 75F3
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
AMD EPYC 7543 Firmware
All of
AMD EPYC 7543P Firmware	<milanpi_1.0.0.c
AMD EPYC 7543P Firmware
All of
AMD EPYC 7513 Firmware	<milanpi_1.0.0.c
AMD EPYC 7513
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
AMD EPYC 7453
All of
AMD EPYC 7473X Firmware	<milanpi_1.0.0.c
AMD EPYC 7473X
All of
AMD EPYC 74F3 Firmware	<milanpi_1.0.0.c
AMD EPYC 74F3
All of
AMD EPYC 7443 Firmware	<milanpi_1.0.0.c
AMD EPYC 7443
All of
AMD EPYC 7443P Firmware	<milanpi_1.0.0.c
AMD EPYC 7443P
All of
AMD EPYC 7413 Firmware	<milanpi_1.0.0.c
AMD EPYC 7413 Firmware
All of
AMD EPYC 7373X Firmware	<milanpi_1.0.0.c
AMD EPYC 7373X
All of
AMD EPYC 73F3 Firmware	<milanpi_1.0.0.c
AMD EPYC 73F3
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
AMD EPYC 7343
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
AMD EPYC 7313P
All of
AMD EPYC 7313P Firmware	<milanpi_1.0.0.c
AMD EPYC 7313P
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
amd epyc 7303
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
amd epyc 7303p
All of
AMD EPYC 72F3 Firmware	<milanpi_1.0.0.c
AMD EPYC 72F3 Firmware
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
AMD EPYC 72F3 Firmware
All of
Amd Epyc Server Firmware	<milanpi_1.0.0.c
amd epyc 7203p
All of
amd epyc 8024p firmware	<genoapi_1.0.0.b
amd epyc 8024p
All of
amd epyc 8024pn firmware	<genoapi_1.0.0.b
amd epyc 8024pn
All of
amd epyc 8124p firmware	<genoapi_1.0.0.b
amd epyc 8124p
All of
amd epyc 8124pn firmware	<genoapi_1.0.0.b
amd epyc 8124pn
All of
amd epyc 8224p firmware	<genoapi_1.0.0.b
amd epyc 8224p
All of
Amd Epyc Server Firmware	<genoapi_1.0.0.b
amd epyc 8224pn
All of
amd epyc 8324p firmware	<genoapi_1.0.0.b
amd epyc 8324p
All of
amd epyc 8324pn firmware	<genoapi_1.0.0.b
amd epyc 8324pn
All of
amd epyc 8434p firmware	<genoapi_1.0.0.b
amd epyc 8434p
All of
Amd Epyc Server Firmware	<genoapi_1.0.0.b
amd epyc 8434pn
All of
amd epyc 8534p firmware	<genoapi_1.0.0.b
amd epyc 8534p
All of
amd epyc 8534pn firmware	<genoapi_1.0.0.b
amd epyc 8534pn
All of
AMD EPYC 9124 Firmware	<genoapi_1.0.0.b
AMD EPYC 9124 Firmware
All of
AMD EPYC 9224 Firmware	<genoapi_1.0.0.b
AMD EPYC 9224
All of
AMD EPYC 9254 Firmware	<genoapi_1.0.0.b
AMD EPYC 9254
All of
AMD EPYC 9334 firmware	<genoapi_1.0.0.b
AMD EPYC 9334 firmware
All of
AMD EPYC 9354 Firmware	<genoapi_1.0.0.b
AMD EPYC 9354 Firmware
All of
AMD EPYC 9354P Firmware	<genoapi_1.0.0.b
AMD EPYC 9354P
All of
AMD EPYC 9174F Firmware	<genoapi_1.0.0.b
AMD EPYC 9174F
All of
AMD EPYC 9184X firmware	<genoapi_1.0.0.b
AMD EPYC 9184X
All of
AMD EPYC 9274F Firmware	<genoapi_1.0.0.b
AMD EPYC 9274F Firmware
All of
AMD EPYC 9374F Firmware	<genoapi_1.0.0.b
AMD EPYC 9374F Firmware
All of
AMD EPYC 9384X Firmware	<genoapi_1.0.0.b
AMD EPYC 9384X
All of
AMD Epyc 9474F Firmware	<genoapi_1.0.0.b
AMD Epyc 9474F Firmware
All of
AMD EPYC 9454P Firmware	<genoapi_1.0.0.b
AMD EPYC 9454P
All of
AMD EPYC 9454P Firmware	<genoapi_1.0.0.b
AMD EPYC 9454P
All of
AMD EPYC 9534 Firmware	<genoapi_1.0.0.b
AMD EPYC 9534
All of
AMD EPYC 9554 Firmware	<genoapi_1.0.0.b
AMD EPYC 9554
All of
AMD EPYC 9554P Firmware	<genoapi_1.0.0.b
AMD EPYC 9554P Firmware
All of
AMD EPYC 9634 Firmware	<genoapi_1.0.0.b
AMD EPYC 9634 Firmware
All of
AMD EPYC 9654 firmware	<genoapi_1.0.0.b
AMD EPYC 9654 firmware
All of
AMD EPYC 9654P Firmware	<genoapi_1.0.0.b
AMD EPYC 9654P
All of
AMD EPYC 9684X Firmware	<genoapi_1.0.0.b
AMD EPYC 9684X Firmware

Never miss a vulnerability like this again

Reference Links

Parent vulnerabilities

(Appears in the following advisories)

IBM-7173420

Frequently Asked Questions

What is the severity of CVE-2023-31346?
CVE-2023-31346 is considered a high-severity vulnerability due to potential sensitive information exposure.
How do I fix CVE-2023-31346?
To mitigate CVE-2023-31346, update the affected AMD Epyc firmware to the latest version available that addresses the vulnerability.
Who is affected by CVE-2023-31346?
CVE-2023-31346 affects local authenticated users of certain AMD Epyc processors running vulnerable firmware versions.
What types of exploitation does CVE-2023-31346 allow?
CVE-2023-31346 allows an attacker to access stale data from other guests, potentially leading to information disclosure.
Which products are impacted by CVE-2023-31346?
Products impacted by CVE-2023-31346 include various AMD Epyc processor firmware versions, specifically below milanpi_1.0.0.c.

agent/author
agent/type
collector/mitre-cve
source/MITRE
agent/first-publish-date
collector/redhat-bugzilla
source/Red Hat
alias/CVE-2023-31346
agent/severity
agent/last-modified-date
agent/event
collector/ibm-support
source/IBM
agent/software-canonical-lookup
agent/references
agent/source
agent/description
agent/softwarecombine
agent/tags
collector/nvd-api
source/NVD
agent/software-canonical-lookup-request
vendor/ibm
canonical/ibm qradar siem
version/ibm qradar siem/7.5 - 7.5.0 up9 if03
canonical/ibm qradar incident forensics
version/ibm qradar incident forensics/7.5 - 7.5.0 up9 if03
vendor/amd
canonical/amd epyc 7773x firmware
canonical/amd epyc 7773x
canonical/amd epyc 7763 firmware
canonical/amd epyc 7713p firmware
canonical/amd epyc 7713
canonical/amd epyc 7663 firmware
canonical/amd epyc 7663p firmware
canonical/amd epyc 7663p
canonical/amd epyc 7643 firmware
canonical/amd epyc 7643
canonical/amd epyc server firmware
canonical/amd epyc 7643p
canonical/amd epyc 7573x firmware
canonical/amd epyc 7573x
canonical/amd epyc 75f3 firmware
canonical/amd epyc 75f3
canonical/amd epyc 7543 firmware
canonical/amd epyc 7543p firmware
canonical/amd epyc 7513 firmware
canonical/amd epyc 7513
canonical/amd epyc 7453
canonical/amd epyc 7473x firmware
canonical/amd epyc 7473x
canonical/amd epyc 74f3 firmware
canonical/amd epyc 74f3
canonical/amd epyc 7443 firmware
canonical/amd epyc 7443
canonical/amd epyc 7443p firmware
canonical/amd epyc 7443p
canonical/amd epyc 7413 firmware
canonical/amd epyc 7373x firmware
canonical/amd epyc 7373x
canonical/amd epyc 73f3 firmware
canonical/amd epyc 73f3
canonical/amd epyc 7343
canonical/amd epyc 7313p
canonical/amd epyc 7313p firmware
canonical/amd epyc 7303
canonical/amd epyc 7303p
canonical/amd epyc 72f3 firmware
canonical/amd epyc 7203p
canonical/amd epyc 8024p firmware
canonical/amd epyc 8024p
canonical/amd epyc 8024pn firmware
canonical/amd epyc 8024pn
canonical/amd epyc 8124p firmware
canonical/amd epyc 8124p
canonical/amd epyc 8124pn firmware
canonical/amd epyc 8124pn
canonical/amd epyc 8224p firmware
canonical/amd epyc 8224p
canonical/amd epyc 8224pn
canonical/amd epyc 8324p firmware
canonical/amd epyc 8324p
canonical/amd epyc 8324pn firmware
canonical/amd epyc 8324pn
canonical/amd epyc 8434p firmware
canonical/amd epyc 8434p
canonical/amd epyc 8434pn
canonical/amd epyc 8534p firmware
canonical/amd epyc 8534p
canonical/amd epyc 8534pn firmware
canonical/amd epyc 8534pn
canonical/amd epyc 9124 firmware
canonical/amd epyc 9224 firmware
canonical/amd epyc 9224
canonical/amd epyc 9254 firmware
canonical/amd epyc 9254
canonical/amd epyc 9334 firmware
canonical/amd epyc 9354 firmware
canonical/amd epyc 9354p firmware
canonical/amd epyc 9354p
canonical/amd epyc 9174f firmware
canonical/amd epyc 9174f
canonical/amd epyc 9184x firmware
canonical/amd epyc 9184x
canonical/amd epyc 9274f firmware
canonical/amd epyc 9374f firmware
canonical/amd epyc 9384x firmware
canonical/amd epyc 9384x
canonical/amd epyc 9474f firmware
canonical/amd epyc 9454p firmware
canonical/amd epyc 9454p
canonical/amd epyc 9534 firmware
canonical/amd epyc 9534
canonical/amd epyc 9554 firmware
canonical/amd epyc 9554
canonical/amd epyc 9554p firmware
canonical/amd epyc 9634 firmware
canonical/amd epyc 9654 firmware
canonical/amd epyc 9654p firmware
canonical/amd epyc 9654p
canonical/amd epyc 9684x firmware