CVE-2023-20585

EUVD-2023-24764
Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 5%
Windows Releases
Platform
Version
Windows 11
24H2 (x64)
KB5083769
25H2 (x64)
KB5083769
Windows Server 2025
Server Core
KB5082063
Standard
KB5082063
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
cluster-md-kmp-default
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
dlm-kmp-default
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
gfs2-kmp-default
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
kernel-default
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
kernel-default-base
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
kernel-default-man
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
kernel-macros
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
kernel-source
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
kernel-syms
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
ocfs2-kmp-default
suse enterprise server 12 SP5
4.12.14-122.310.1
fixed
Common Weakness Enumeration
References
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3016.html