Vulnerabilities > AMD > Epyc 7251 > High

DATE CVE VULNERABILITY TITLE RISK
2021-05-13 CVE-2020-12967 Command Injection vulnerability in AMD products
The lack of nested page table protection in the AMD SEV/SEV-ES feature could potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.
network
low complexity
amd CWE-77
7.2
2021-05-13 CVE-2021-26311 Command Injection vulnerability in AMD products
In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not detected by the attestation mechanism which could be used by a malicious hypervisor to potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.
network
low complexity
amd CWE-77
7.2