- Description
- Improper input validation for DIMM serial presence detect (SPD) metadata could allow an attacker with physical access, ring0 access on a system with a non-compliant DIMM, or control over the Root of Trust for BIOS update, to potentially overwrite guest memory resulting in loss of guest data integrity.
- Source
- psirt@amd.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 5.3
- Impact score
- 4
- Exploitability score
- 0.8
- Vector string
- CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N
- Severity
- MEDIUM
- psirt@amd.com
- CWE-20
- Hype score
- Not currently trending
CVE-2024-21944 Improper Input Validation in DIMM SPD Metadata Allows Guest Memory Overwrite https://t.co/ul7Lkhtben
@VulmonFeeds
11 Jun 2026
35 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
BadRAM un ataque que elude la protección SEV-SNP en AMD https://t.co/v4EtJ5PNAV Hace pocos días un equipo de investigadores dieron a conocer un nuevo concepto de ataque llamado «BadRAM» catalogado bajo CVE-2024-21944, este ataque puede comprometer los entornos protegidos median
@laboratoriolinu
22 Dec 2024
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes