CVE-2023-31347
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
13/02/2024
Last modified:
17/03/2025
Description
Due to a code bug in<br />
Secure_TSC, SEV firmware may allow an attacker with high privileges to cause a<br />
guest to observe an incorrect TSC when Secure TSC is enabled potentially<br />
resulting in a loss of guest integrity. <br />
<br />
<br />
<br />
<br />
Impact
Base Score 3.x
4.90
Severity 3.x
MEDIUM
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:* | milanpi_1.0.0.c (excluding) | |
| cpe:2.3:h:amd:epyc_7773x:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:* | milanpi_1.0.0.c (excluding) | |
| cpe:2.3:h:amd:epyc_7763:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:* | milanpi_1.0.0.c (excluding) | |
| cpe:2.3:h:amd:epyc_7713:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:amd:epyc_7713p_firmware:-:*:*:*:*:*:*:* | ||
| cpe:2.3:h:amd:epyc_7713p:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:* | milanpi_1.0.0.c (excluding) | |
| cpe:2.3:h:amd:epyc_7663:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:amd:epyc_7663p_firmware:*:*:*:*:*:*:*:* | milanpi_1.0.0.c (excluding) | |
| cpe:2.3:h:amd:epyc_7663p:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:* | milanpi_1.0.0.c (excluding) | |
| cpe:2.3:h:amd:epyc_7643:-:*:*:*:*:*:*:* | ||
| cpe:2.3:o:amd:epyc_7643p_firmware:*:*:*:*:*:*:*:* | milanpi_1.0.0.c (excluding) |
To consult the complete list of CPE names with products and versions, see this page