AMD SEV-SNP Vulnerability Allows Malicious Microcode Injection with Admin Access



February 04, 2025 at 02:28PM

A security vulnerability has been disclosed in AMD's Secure Encrypted Virtualization (SEV) that could permit an attacker to load a malicious CPU microcode under specific conditions. The flaw, tracked as CVE-2024-56161, carries a CVSS score of 7.2 out of 10.0, indicating high severity. "Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local

from The Hacker News https://ift.tt/FRTsey8

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post