CVE-2021-26311

May 25, 2021

In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not detected by the attestation mechanism which could be used by a malicious hypervisor to potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.

Summary:

In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not detected by the attestation mechanism which could be used by a malicious hypervisor to potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.

Reference Links(if available):

  • https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1004

  • CVSS Score (if available)

    v2: / HIGH

    v3: /

    Links to Exploits(if available)

  • You may have missed

    image

    [RAWORLD] – Ransomware Victim: Co****nt

    November 25, 2024
    image

    [KILLSEC] – Ransomware Victim: inv[[.][.][.]]nator

    November 25, 2024
    image

    [KILLSEC] – Ransomware Victim: Ithbar

    November 25, 2024
    image

    [KILLSEC] – Ransomware Victim: RiverRestHome

    November 25, 2024
    image

    [KILLSEC] – Ransomware Victim: Dardoc

    November 25, 2024