Skip to main content

Suse CVE-2023-20585

| EUVDEUVD-2023-24764 MEDIUM
Access of Memory Location After End of Buffer (CWE-788)
2026-04-16 AMD GHSA-c43c-pr38-m5g2
5.6
CVSS 4.0 · NVD
Share

Severity by source

NVD PRIMARY
5.6 MEDIUM
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
SUSE
MEDIUM
qualitative

Primary rating from NVD.

CVSS VectorNVD

CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:N/VI:H/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Attack Vector
Local
Attack Complexity
High
Privileges Required
High
User Interaction
None
Scope
X

Lifecycle Timeline

4
Patch released
Apr 20, 2026 - 08:30 nvd
Patch available
CVSS changed
Apr 16, 2026 - 19:22 NVD
5.6 (MEDIUM)
EUVD ID Assigned
Apr 16, 2026 - 19:15 euvd
EUVD-2023-24764
CVE Published
Apr 16, 2026 - 18:42 nvd
MEDIUM 5.6

DescriptionCVE.org

Insuffient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised HV to trigger an out of bounds condition without RMP checks resulting in a potential loss of confidential guest integrity.

AnalysisAI

Insuffient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised HV to trigger an out of bounds condition without RMP checks resulting in a. Rated medium severity (CVSS 5.6).

Technical ContextAI

This vulnerability is classified under CWE-788. Insuffient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised HV to trigger an out of bounds condition without RMP checks resulting in a potential loss of confidential guest integrity. Affected products include: Amd Amd Epyc™ 7003 Series Processors, Amd Amd Epyc™ 9004 Series Processors, Amd Amd Epyc™ Embedded 7003 Series Processors, Amd Amd Epyc™ Embedded 9004 Series Processors.

RemediationAI

A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Vendor StatusVendor

SUSE

Severity: Medium
Product Status
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise Desktop 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Availability Extension 15 SP7 Fixed
SUSE Linux Enterprise High Performance Computing 15 SP7 Fixed

Share

CVE-2023-20585 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy