AMD EPYC 7001
Moderate fix1 remedy
cpe:2.3:h:amd:epyc_7001:*:*:*:*:*:*:*, +1 more
Moderate fix1 remedy
AMD Processors Entropy Degradation Vulnerability in RDRAND Instruction for SEV-SNP Guests
Vulnerability
Patched
A vulnerability exists in certain AMD processors due to incomplete cleanup after loading CPU microcode patches. This flaw may allow a privileged attacker to degrade the entropy of the RDRAND instruction, potentially compromising the integrity of SEV-SNP (Secure Encrypted Virtualization - Secure Nested Paging) guests. The issue affects several AMD EPYC and Ryzen processor series.
Impact
Exploitation of this vulnerability could lead to a degradation of entropy in the RDRAND instruction, causing a potential loss of integrity for SEV-SNP guests.
Remediation
Users are advised to update to the latest Platform Initialization (PI) firmware version. Specific update instructions can be obtained from the original equipment manufacturer (OEM).
Added: Sep 5, 2025, 1:35 PM
Updated: Sep 5, 2025, 7:05 PM
Vulnerability Rating
Custom Algorithm
spread
6.6impact
0.2exploitability
2.8remediation
7.7relevance
0.4threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.