CVE-2024-21977

LOW3.2

Incomplete cleanup after loading a CPU microcode patch may allow a privileged attacker to degrade the entropy of the RDRAND instruction, potentially resulting in loss of integrity for SEV-SNP guests

Published Sep 5, 2025

Modified 6 months ago

Details

Incomplete cleanup after loading a CPU microcode patch may allow a privileged attacker to degrade the entropy of the RDRAND instruction, potentially resulting in loss of integrity for SEV-SNP guests.

References

WEB

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3014.html

WEB

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-4012.html

WEB

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-5007.html

ADVISORY

https://www.cve.org/CVERecord?id=CVE-2024-21977

CVSS Analysis

CVSS v3.1

3.2