Vulnerability CVE-2021-26349

Vulnerability Name:

CVE-2021-26349 (CCN-226260)

Assigned:

2021-01-29

Published:

2022-05-10

Updated:

2022-05-20

Summary:

Failure to assign a new report ID to an imported guest may potentially result in an SEV-SNP guest VM being tricked into trusting a dishonest Migration Agent (MA).

CVSS v3 Severity:

5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

6.2 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
5.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

CVSS v2 Severity:

2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.9 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-noinfo

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2021-26349

Source: XF
Type: UNKNOWN
amd-cve202126349-sec-bypass(226260)

Source: CCN
Type: AMD-SB-1028
AMD Server Vulnerabilities - May 2022

Source: MISC
Type: Vendor Advisory
https://www.amd.com/en/corporate/product-security/bulletin/amd-sb-1028

Vulnerable Configuration:

Configuration 1:

cpe:/o:amd:epyc_7763_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7763:-:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:amd:epyc_7713p_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7713p:-:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:amd:epyc_7713_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7713:-:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:amd:epyc_7663_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7663:-:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:amd:epyc_7643_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7643:-:*:*:*:*:*:*:*

Configuration 6:

cpe:/o:amd:epyc_75f3_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_75f3:-:*:*:*:*:*:*:*

Configuration 7:

cpe:/o:amd:epyc_7543p_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7543p:-:*:*:*:*:*:*:*

Configuration 8:

cpe:/o:amd:epyc_7543_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7543:-:*:*:*:*:*:*:*

Configuration 9:

cpe:/o:amd:epyc_7513_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7513:-:*:*:*:*:*:*:*

Configuration 10:

cpe:/o:amd:epyc_7453_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7453:-:*:*:*:*:*:*:*

Configuration 11:

cpe:/o:amd:epyc_74f3_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_74f3:-:*:*:*:*:*:*:*

Configuration 12:

cpe:/o:amd:epyc_7443p_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7443p:-:*:*:*:*:*:*:*

Configuration 13:

cpe:/o:amd:epyc_7443_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7443:-:*:*:*:*:*:*:*

Configuration 14:

cpe:/o:amd:epyc_7413_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7413:-:*:*:*:*:*:*:*

Configuration 15:

cpe:/o:amd:epyc_73f3_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_73f3:-:*:*:*:*:*:*:*

Configuration 16:

cpe:/o:amd:epyc_7343_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7343:-:*:*:*:*:*:*:*

Configuration 17:

cpe:/o:amd:epyc_7313p_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7313p:-:*:*:*:*:*:*:*

Configuration 18:

cpe:/o:amd:epyc_7313_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7313:-:*:*:*:*:*:*:*

Configuration 19:

cpe:/o:amd:epyc_72f3_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_72f3:-:*:*:*:*:*:*:*

Configuration 20:

cpe:/o:amd:epyc_7773x_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7773x:-:*:*:*:*:*:*:*

Configuration 21:

cpe:/o:amd:epyc_7473x_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7473x:-:*:*:*:*:*:*:*

Configuration 22:

cpe:/o:amd:epyc_7573x_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7573x:-:*:*:*:*:*:*:*

Configuration 23:

cpe:/o:amd:epyc_7373x_firmware:*:*:*:*:*:*:*:* (Version < milanpi-sp3_1.0.0.7)

AND

cpe:/h:amd:epyc_7373x:-:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7540	P	kernel-firmware-all-20230320-150500.1.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:3609	P	libipa_hbac0-1.16.1-4.17.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:511	P	Security update for kernel-firmware (Important)	2022-06-02
oval:org.opensuse.security:def:95239	P	Security update for kernel-firmware (Important)	2022-06-02
oval:org.opensuse.security:def:900	P	Security update for kernel-firmware (Moderate)	2022-05-25
oval:org.opensuse.security:def:125721	P	Security update for kernel-firmware (Moderate)	2022-05-25
oval:org.opensuse.security:def:126886	P	Security update for kernel-firmware (Moderate)	2022-05-25
oval:org.opensuse.security:def:6056	P	Security update for kernel-firmware (Moderate)	2022-05-25
oval:org.opensuse.security:def:42293	P	Security update for kernel-firmware (Moderate)	2022-05-25
oval:org.opensuse.security:def:127283	P	Security update for kernel-firmware (Moderate)	2022-05-25
oval:org.opensuse.security:def:42389	P	Security update for kernel-firmware (Moderate)	2022-05-25
oval:org.opensuse.security:def:118902	P	Security update for kernel-firmware (Moderate)	2022-05-19
oval:org.opensuse.security:def:119209	P	Security update for kernel-firmware (Moderate)	2022-05-19
oval:org.opensuse.security:def:119399	P	Security update for kernel-firmware (Moderate)	2022-05-19
oval:org.opensuse.security:def:118712	P	Security update for kernel-firmware (Moderate)	2022-05-19
oval:org.opensuse.security:def:119584	P	Security update for kernel-firmware (Moderate)	2022-05-19

BACK