PT-2025-36122 · Amd · Amd Sev-Snp
Published
2025-09-05
·
Updated
2025-09-05
·
CVE-2024-21977
CVSS v3.1
3.2
| Vector | AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:N |
Weakness Enumeration
Related Identifiers
Affected Products
Amd Sev-Snp
Published
2025-09-05
·
Updated
2025-09-05
·
CVE-2024-21977
3.2
Low
| Base vector | Vector | AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions:
AMD SEV-SNP (affected versions not specified)
Description:
Incomplete cleanup after loading a CPU microcode patch may allow a privileged attacker to degrade the entropy of the `RDRAND` instruction, potentially resulting in loss of integrity for SEV-SNP guests.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.