Versio.io

CVE-2021-26349

Common vulnerabilities & exposures (CVE)

CVE databaseCVE database blogpostRelease & EoL database
 
Published at: - 11-05-2022 07:15
Last modified: - 20-05-2022 04:18
Total changes: - 2

Description

Failure to assign a new report ID to an imported guest may potentially result in an SEV-SNP guest VM being tricked into trusting a dishonest Migration Agent (MA).

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Low
Attack complexity
Local
Attack vector
None
Availability
None
Confidentiality
High
Integrity
Low
Privileges required
Unchanged
Scope
None
User interaction
5.5
Base score
1.8
3.6
Exploitability score
Impact score
 

Verification logic

OR
AND
OR
vendor=amd AND product=epyc_7763_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7763 AND version=-
AND
OR
vendor=amd AND product=epyc_7713p_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7713p AND version=-
AND
OR
vendor=amd AND product=epyc_7713_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7713 AND version=-
AND
OR
vendor=amd AND product=epyc_7663_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7663 AND version=-
AND
OR
vendor=amd AND product=epyc_7643_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7643 AND version=-
AND
OR
vendor=amd AND product=epyc_75f3_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_75f3 AND version=-
AND
OR
vendor=amd AND product=epyc_7543p_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7543p AND version=-
AND
OR
vendor=amd AND product=epyc_7543_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7543 AND version=-
AND
OR
vendor=amd AND product=epyc_7513_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7513 AND version=-
AND
OR
vendor=amd AND product=epyc_7453_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7453 AND version=-
AND
OR
vendor=amd AND product=epyc_74f3_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_74f3 AND version=-
AND
OR
vendor=amd AND product=epyc_7443p_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7443p AND version=-
AND
OR
vendor=amd AND product=epyc_7443_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7443 AND version=-
AND
OR
vendor=amd AND product=epyc_7413_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7413 AND version=-
AND
OR
vendor=amd AND product=epyc_73f3_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_73f3 AND version=-
AND
OR
vendor=amd AND product=epyc_7343_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7343 AND version=-
AND
OR
vendor=amd AND product=epyc_7313p_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7313p AND version=-
AND
OR
vendor=amd AND product=epyc_7313_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7313 AND version=-
AND
OR
vendor=amd AND product=epyc_72f3_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_72f3 AND version=-
AND
OR
vendor=amd AND product=epyc_7773x_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7773x AND version=-
AND
OR
vendor=amd AND product=epyc_7473x_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7473x AND version=-
AND
OR
vendor=amd AND product=epyc_7573x_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7573x AND version=-
AND
OR
vendor=amd AND product=epyc_7373x_firmware AND versionEndExcluding=milanpi-sp3_1.0.0.7
OR
vendor=amd AND product=epyc_7373x AND version=-
 

Reference

 


Keywords

NVD

 

CVE-2021-26349

 

CVE

 

Common vulnerabilities & exposures

 

CVSS

 

Common vulnerability scoring system

 

Security

 

Vulnerabilities

 

Exposures

 

We use cookies to ensure that we give you the best experience on our website. Read privacy policies for more information.