CVE-2023-20592
CVE-2023-20592
In short
A flaw in how some AMD CPUs handle the INVD instruction allows a malicious hypervisor to interfere with cache memory operations, potentially corrupting data in guest virtual machines.
Technical detail
The INVD instruction improperly handles cache line write-back behavior on affected AMD processors. An attacker controlling a hypervisor can exploit this to compromise memory integrity of guest VMs, requiring hypervisor-level access as a prerequisite.
Summary generated and translated by AI from the official description.
Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.
Affected products
AMD · 1st Gen AMD EPYC™ ProcessorsAMD · 2nd Gen AMD EPYC™ ProcessorsAMD · 3rd Gen AMD EPYC™ ProcessorsWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →