high
7.9
CWE
119 787
Advisory Published
Updated

CVE-2024-21980: Buffer Overflow

First published: Mon Aug 05 2024(Updated: )

Improper restriction of write operations in SNP firmware could allow a malicious hypervisor to potentially overwrite a guest's memory or UMC seed resulting in loss of confidentiality and integrity.

Credit: psirt@amd.com

Affected SoftwareAffected VersionHow to fix
All of
amd epyc 7203 firmware<milanpi_1.0.0.d
amd epyc 7203
All of
amd epyc 7203p firmware<milanpi_1.0.0.d
amd epyc 7203p
All of
AMD EPYC 72F3 Firmware<milanpi_1.0.0.d
AMD EPYC 72F3 Firmware
All of
amd epyc 7303 firmware<milanpi_1.0.0.d
amd epyc 7303
All of
amd epyc 7303p firmware<milanpi_1.0.0.d
amd epyc 7303p
All of
AMD EPYC 7313 Firmware<milanpi_1.0.0.d
AMD EPYC 7313P
All of
AMD EPYC 7313P Firmware<milanpi_1.0.0.d
AMD EPYC 7313P
All of
AMD EPYC 7343 Firmware<milanpi_1.0.0.d
AMD EPYC 7343
All of
AMD EPYC 73F3 Firmware<milanpi_1.0.0.d
AMD EPYC 73F3
All of
AMD EPYC 7373X Firmware<milanpi_1.0.0.d
AMD EPYC 7373X
All of
AMD EPYC 7413 Firmware<milanpi_1.0.0.d
AMD EPYC 7413 Firmware
All of
AMD EPYC 7443 Firmware<milanpi_1.0.0.d
AMD EPYC 7443
All of
AMD EPYC 7443P Firmware<milanpi_1.0.0.d
AMD EPYC 7443P
All of
AMD EPYC 74F3 Firmware<milanpi_1.0.0.d
AMD EPYC 74F3
All of
AMD EPYC 7453 firmware<milanpi_1.0.0.d
AMD EPYC 7453
All of
AMD EPYC 7473X Firmware<milanpi_1.0.0.d
AMD EPYC 7473X
All of
AMD EPYC 7513 Firmware<milanpi_1.0.0.d
AMD EPYC 7513
All of
AMD EPYC 7543 Firmware<milanpi_1.0.0.d
AMD EPYC 7543 Firmware
All of
AMD EPYC 7543P Firmware<milanpi_1.0.0.d
AMD EPYC 7543P Firmware
All of
AMD EPYC 75F3 Firmware<milanpi_1.0.0.d
AMD EPYC 75F3
All of
AMD EPYC 7573X Firmware<milanpi_1.0.0.d
AMD EPYC 7573X
All of
AMD EPYC 7643 Firmware<milanpi_1.0.0.d
AMD EPYC 7643
All of
AMD EPYC 7773X Firmware<milanpi_1.0.0.d
AMD EPYC 7773X
All of
amd epyc 7643p firmware<milanpi_1.0.0.d
amd epyc 7643p
All of
AMD EPYC 7663 Firmware<milanpi_1.0.0.d
AMD EPYC 7663 Firmware
All of
amd epyc 7663p firmware<milanpi_1.0.0.d
amd epyc 7663p
All of
AMD EPYC 7713P Firmware<milanpi_1.0.0.d
AMD EPYC 7713
All of
AMD EPYC 7713P Firmware<milanpi_1.0.0.d
AMD EPYC 7713P Firmware
All of
AMD EPYC 7763 Firmware<milanpi_1.0.0.d
AMD EPYC 7763 Firmware
All of
amd epyc 8024pn firmware<genoapi_1.0.0.c
amd epyc 8024pn
All of
amd epyc 8024p firmware<genoapi_1.0.0.c
amd epyc 8024p
All of
amd epyc 8124pn firmware<genoapi_1.0.0.c
amd epyc 8124pn
All of
amd epyc 8124p firmware<genoapi_1.0.0.c
amd epyc 8124p
All of
amd epyc 8224pn firmware<genoapi_1.0.0.c
amd epyc 8224pn
All of
amd epyc 8224p firmware<genoapi_1.0.0.c
amd epyc 8224p
All of
amd epyc 8324pn firmware<genoapi_1.0.0.c
amd epyc 8324pn
All of
amd epyc 8324p firmware<genoapi_1.0.0.c
amd epyc 8324p
All of
amd epyc 8434pn firmware<genoapi_1.0.0.c
amd epyc 8434pn
All of
amd epyc 8434p firmware<genoapi_1.0.0.c
amd epyc 8434p
All of
amd epyc 8534pn firmware<genoapi_1.0.0.c
amd epyc 8534pn
All of
amd epyc 8534p firmware<genoapi_1.0.0.c
amd epyc 8534p
All of
AMD EPYC 9734 Firmware<genoapi_1.0.0.c
AMD EPYC 9734 Firmware
All of
AMD EPYC 9754S Firmware<genoapi_1.0.0.c
AMD Epyc 9754S
All of
AMD EPYC 9754 Firmware<genoapi_1.0.0.c
AMD EPYC 9754 Firmware
All of
AMD EPYC 9184X firmware<genoapi_1.0.0.c
AMD EPYC 9184X
All of
AMD EPYC 9384X Firmware<genoapi_1.0.0.c
AMD EPYC 9384X
All of
AMD EPYC 9684X Firmware<genoapi_1.0.0.c
AMD EPYC 9684X Firmware
All of
AMD EPYC 9124 Firmware<genoapi_1.0.0.c
AMD EPYC 9124 Firmware
All of
AMD EPYC 9174F Firmware<genoapi_1.0.0.c
AMD EPYC 9174F
All of
AMD EPYC 9224 Firmware<genoapi_1.0.0.c
AMD EPYC 9224
All of
AMD EPYC 9254 Firmware<genoapi_1.0.0.c
AMD EPYC 9254
All of
AMD EPYC 9274F Firmware<genoapi_1.0.0.c
AMD EPYC 9274F Firmware
All of
AMD EPYC 9334 firmware<genoapi_1.0.0.c
AMD EPYC 9334 firmware
All of
AMD EPYC 9354 Firmware<genoapi_1.0.0.c
AMD EPYC 9354 Firmware
All of
AMD EPYC 9354P Firmware<genoapi_1.0.0.c
AMD EPYC 9354P
All of
AMD EPYC 9374F Firmware<genoapi_1.0.0.c
AMD EPYC 9374F Firmware
All of
AMD EPYC 9454P Firmware<genoapi_1.0.0.c
AMD EPYC 9454P
All of
AMD EPYC 9454P Firmware<genoapi_1.0.0.c
AMD EPYC 9454P
All of
AMD Epyc 9474F Firmware<genoapi_1.0.0.c
AMD Epyc 9474F Firmware
All of
AMD EPYC 9534 Firmware<genoapi_1.0.0.c
AMD EPYC 9534
All of
AMD EPYC 9554 Firmware<genoapi_1.0.0.c
AMD EPYC 9554
All of
AMD EPYC 9554P Firmware<genoapi_1.0.0.c
AMD EPYC 9554P Firmware
All of
AMD EPYC 9634 Firmware<genoapi_1.0.0.c
AMD EPYC 9634 Firmware
All of
AMD EPYC 9654 firmware<genoapi_1.0.0.c
AMD EPYC 9654 firmware
All of
AMD EPYC 9654P Firmware<genoapi_1.0.0.c
AMD EPYC 9654P
All of
Amd Epyc Embedded 7313 Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7313
All of
Amd Epyc Embedded 7313p Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7313p
All of
Amd Epyc Embedded 7413 Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7413
All of
Amd Epyc Embedded 7443 Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7443
All of
Amd Epyc Embedded 7443p Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7443p
All of
Amd Epyc Embedded 7543 Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7543
All of
Amd Epyc Embedded 7543p Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7543p
All of
Amd Epyc Embedded 7643 Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7643
All of
Amd Epyc Embedded 7713 Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7713
All of
Amd Epyc Embedded 7713p Firmware<embmilanpi-sp3_1.0.0.9
Amd Epyc Embedded 7713p
All of
Amd Epyc Embedded 9124 Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9124
All of
Amd Epyc Embedded 9254 Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9254
All of
Amd Epyc Embedded 9354 Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9354
All of
Amd Epyc Embedded 9354p Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9354p
All of
Amd Epyc Embedded 9454 Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9454
All of
Amd Epyc Embedded 9454p Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9454p
All of
Amd Epyc Embedded 9534 Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9534
All of
Amd Epyc Embedded 9554 Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9554
All of
Amd Epyc Embedded 9554p Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9554p
All of
Amd Epyc Embedded 9654 Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9654
All of
Amd Epyc Embedded 9654p Firmware<embgenoapi-sp5_1.0.0.7
Amd Epyc Embedded 9654p

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2024-21980?

    The severity of CVE-2024-21980 is categorized as high due to its potential to compromise confidentiality and integrity.

  • How do I fix CVE-2024-21980?

    To fix CVE-2024-21980, update the affected AMD EPYC firmware to a version that addresses the vulnerability.

  • Which software is affected by CVE-2024-21980?

    CVE-2024-21980 affects multiple versions of AMD EPYC firmware, specifically versions prior to milanpi_1.0.0.d and genoapi_1.0.0.c.

  • What types of attacks could exploit CVE-2024-21980?

    CVE-2024-21980 could be exploited by a malicious hypervisor to perform unauthorized write operations, leading to potential data breaches.

  • When was CVE-2024-21980 published?

    CVE-2024-21980 was published on August 9, 2024.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203