Vulnerabilities > CVE-2021-46744 - Information Exposure Through Discrepancy vulnerability in AMD products

047910
CVSS 6.5 - MEDIUM
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
local
low complexity
amd
CWE-203
NVD
Published: 2022-05-11
Updated: 2023-08-08

Summary

An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time.

Vulnerable Configurations

Part Description Count
OS
Amd
99
Hardware
Amd
99

Common Weakness Enumeration (CWE)

References