admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-28 09:11:28 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2024/CVE-2024-561xx/CVE-2024-56161.json
cad-safe-bot 5f5b91e759 Auto-Update: 2025-04-02T23:55:20.565484+00:00
2025-04-02 23:58:55 +00:00

76 lines
2.5 KiB
JSON
Raw Blame History

{
"id": "CVE-2024-56161",
"sourceIdentifier": "psirt@amd.com",
"published": "2025-02-03T18:15:37.280",
"lastModified": "2025-04-02T22:15:17.963",
"vulnStatus": "Awaiting Analysis",
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Improper signature verification in AMD CPU ROM microcode patch loader may allow an attacker with local administrator privilege to load malicious CPU microcode resulting in loss of confidentiality and integrity of a confidential guest running under AMD SEV-SNP."
},
{
"lang": "es",
"value": "La verificaci\u00f3n de firma incorrecta en el cargador de parches de microc\u00f3digo ROM de CPU AMD puede permitir que un atacante con privilegios de administrador local cargue microc\u00f3digo de CPU malicioso, lo que resulta en la p\u00e9rdida de confidencialidad e integridad de un invitado confidencial que se ejecuta bajo AMD SEV-SNP."
}
],
"metrics": {
"cvssMetricV31": [
{
"source": "psirt@amd.com",
"type": "Secondary",
"cvssData": {
"version": "3.1",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:N",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"attackVector": "LOCAL",
"attackComplexity": "HIGH",
"privilegesRequired": "HIGH",
"userInteraction": "NONE",
"scope": "CHANGED",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"availabilityImpact": "NONE"
},
"exploitabilityScore": 0.8,
"impactScore": 5.8
}
]
},
"weaknesses": [
{
"source": "psirt@amd.com",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-347"
}
]
}
],
"references": [
{
"url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3019.html",
"source": "psirt@amd.com"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/02/04/1",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "http://www.openwall.com/lists/oss-security/2025/03/06/2",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://lists.debian.org/debian-lts-announce/2025/03/msg00024.html",
"source": "af854a3a-2127-422b-91ae-364da2661108"
},
{
"url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7033.html",
"source": "af854a3a-2127-422b-91ae-364da2661108"
}
]
}
Reference in New Issue View Git Blame Copy Permalink