3.2
CVE-2024-36331
- EPSS 0.14%
- Veröffentlicht 06.09.2025 17:29:38
- Zuletzt bearbeitet 15.04.2026 00:35:42
- CVE-Watchlists
- Unerledigt
Improper initialization of CPU cache memory could allow a privileged attacker with hypervisor access to overwrite SEV-SNP guest memory resulting in loss of data integrity.
Daten sind bereitgestellt durch das CVE Programm von einer CVE Numbering Authority (CNA) (Unstrukturiert).
HerstellerAMD
≫
Produkt
AMD EPYC™ 9004 Series Processors
Default Statusaffected
Version
GenoaPI_1.0.0.F
Status
unaffected
HerstellerAMD
≫
Produkt
EPYC™ Embedded 9004 Series Processors
Default Statusaffected
Version
EmbGenoaPI-1.0.0.A
Status
unaffected
HerstellerAMD
≫
Produkt
AMD EPYC™ Embedded 9004 Series Processors
Default Statusaffected
Version
EmbGenoaPI-1.0.0.A
Status
unaffected
VulnDex Vulnerability Enrichment
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.14% | 0.04 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| psirt@amd.com | 3.2 | 1.5 | 1.4 |
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:N
|
CWE-665 Improper Initialization
The product does not initialize or incorrectly initializes a resource, which might leave the resource in an unexpected state when it is accessed or used.
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-5007.html
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3014.html
https://lists.debian.org/debian-lts-announce/2025/10/msg00008.html