Primary

Context

AMD EPYC Processors SEV Firmware Use-After-Free Vulnerability Allowing Hypervisor Manipulation of Migrated Guests

Vulnerability

Patched

A use-after-free vulnerability has been identified in the Secure Encrypted Virtualization (SEV) firmware of AMD EPYC processors. This vulnerability could allow a malicious hypervisor to activate a migrated guest with the SINGLE_SOCKET policy on a different socket than the migration agent, potentially leading to a loss of integrity. The issue affects several AMD EPYC processor series, including 7001, 7002, 7003, 8004, 9004, and 9005, all within the AMD EPYC Embedded product line.

Impact

Exploitation of this vulnerability could result in a loss of integrity for the affected virtual machine.

Remediation

Users can update to the recommended AMD EPYC Platform Initialization (PI) or SEV firmware versions. Specific update instructions can be obtained from the original equipment manufacturer (OEM).

Added: Feb 10, 2026, 9:02 PM

Updated: Feb 11, 2026, 2:49 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

2.4

remediation

7.7

relevance

2.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

2.4

remediation

7.7

relevance

2.8

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD EPYC Processors SEV Firmware Use-After-Free Vulnerability Allowing Hypervisor Manipulation of Migrated Guests

Vulnerability

Impact

Remediation

Affected Products

AMD Secure Encrypted Virtualization

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating