Primary

Context

AMD EPYC Processors IOMMU Data Removal Vulnerability

Vulnerability

A vulnerability exists in certain AMD EPYC processors due to insufficient data removal in the Secure Encrypted Virtualization (SEV) firmware, which does not fully clear the I/O Memory Management Unit (IOMMU). This shortcoming could allow a local privileged attacker to manipulate guest memory, leading to potential confidentiality and integrity breaches.

Impact

Exploitation of this vulnerability could result in unauthorized access to or modification of guest memory, compromising the confidentiality and integrity of that memory.

Remediation

Users can update to the recommended AMD EPYC Platform Initialization (PI) or Secure Encrypted Virtualization (SEV) firmware versions. Specific update details can be found in the AMD Security Bulletin AMD-SB-3023.

Added: Feb 10, 2026, 8:59 PM

Updated: Feb 11, 2026, 2:47 AM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.7

exploitability

2.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

1.7

exploitability

2.4

remediation

0.0

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD EPYC Processors IOMMU Data Removal Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating