CVE-2021-26311
AMD Secure Encrypted Virtualization
In short
A vulnerability in AMD's secure virtualization feature (SEV/SEV-ES) allows a malicious hypervisor administrator to secretly rearrange memory in a virtual machine without being detected, potentially enabling them to execute arbitrary code inside the guest VM.
Technical detail
The AMD SEV/SEV-ES attestation mechanism fails to detect memory rearrangement attacks in the guest address space. A privileged hypervisor operator can exploit this to modify memory layout post-attestation, bypassing integrity checks and achieving arbitrary code execution within the guest VM with administrative access to the host.
Summary generated and translated by AI from the official description.
In the AMD SEV/SEV-ES feature, memory can be rearranged in the guest address space that is not detected by the attestation mechanism which could be used by a malicious hypervisor to potentially lead to arbitrary code execution within the guest VM if a malicious administrator has access to compromise the server hypervisor.
Affected products
AMD · SEV/SEV-ESWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →