Primary

Context

AMD Secure Encrypted Virtualization Firmware Improper Access Control Vulnerability Allowing Hypervisor to Bypass RMP Protections

Vulnerability

Patched

A vulnerability exists in AMD Secure Encrypted Virtualization (SEV) firmware, where improper access control could enable a malicious hypervisor to bypass reverse map table (RMP) protections. This flaw may lead to a loss of memory integrity for guests utilizing SEV-Secure Nested Paging (SNP).

Impact

Exploitation of this vulnerability could result in a loss of memory integrity for SEV-SNP guests.

Remediation

Users are advised to update to the AMD EPYC Embedded 9005 Series Processors 'Turin' or 'Turin Dense' version 1.0.0.6. For AMD EPYC Embedded 9004 Series Processors, the update should be applied via the 'EmbGenoaPI-SP5 1.0.0.C' version.

Added: Feb 10, 2026, 10:39 PM

Updated: Feb 10, 2026, 10:39 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

2.4

remediation

7.9

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

2.4

remediation

7.9

relevance

2.7

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

AMD Secure Encrypted Virtualization Firmware Improper Access Control Vulnerability Allowing Hypervisor to Bypass RMP Protections

Vulnerability

Impact

Remediation

Affected Products

AMD Secure Encrypted Virtualization

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating