CVE-2021-29657
CVSS v3.1
7.4 (High)
CVSS v2.0
6.9 (Medium)
EPSS
0.28 % (69th)
Affected Products
1
Advisories
1
arch/x86/kvm/svm/nested.c in the Linux kernel before 5.11.12 has a use-after-free in which an AMD KVM guest can bypass access control on host OS MSRs when there are nested guests, aka CID-a58d9166a756. This occurs because of a TOCTOU race condition associated with a VMCB12 double fetch in nested_svm_vmrun.
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2021-07-22 17:15:09
(3 years ago) - Updated Date
-
2023-05-19 16:51:04
(16 months ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...