CVE-2023-20585EXPLOITEDPATCHED

amd · iommu

CVE-2023-20585: Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hy

Description

Insufficient checks of the RMP on host buffer access in IOMMU may allow an attacker with privileges and a compromised hypervisor to trigger an out of bounds condition without RMP checks, resulting in a potential loss of confidential guest integrity.

Affected Products

Vendor	Product	Versions
amd	iommu	—

References

https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-3016.html

Related News (6 articles)

Tier B

CERT-FR5d ago

Multiples vulnérabilités dans le noyau Linux de SUSE (05 juin 2026)

→ No new info (linked only)

Tier B

CERT-FR12d ago

Multiples vulnérabilités dans le noyau Linux de SUSE (29 mai 2026)

→ No new info (linked only)

Tier C

VulDB55d ago

CVE-2023-20585 | AMD EPYC 7003 Processors access of memory location after end of buffer (EUVD-2023-24764)

→ No new info (linked only)

Tier B

BSI Advisories56d ago

[NEU] [mittel] AMD Prozessoren: Mehrere Schwachstellen

→ No new info (linked only)

Tier C

VulDB57d ago

CVE-2023-20585 | Microsoft Windows 11 24H2/11 25H2/Server 2025 buffer overflow

→ No new info (linked only)

Tier A

Microsoft MSRC57d ago

CVE-2023-20585 AMD: CVE-2023-20585 IOMMU Write Buffer Vulnerability

→ No new info (linked only)

CVSS 3.17.5 HIGH

CISA KEV❌ No

Actively exploited✅ Yes

Patch available

SEV FW 1.37.23SEV FW 1.37.31EmbMilanPI-SP3 1.0.0.BEmbGenoaPI-1.0.0.A

CWECWE-788

PublishedApr 16, 2026

Last enriched55d agov2

Trending Score28

Source articles6

Independent4

Info Completeness8/14

Missing: versions, epss, kev, exploit, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

NONECVE-2025-54518EXP

CVE-2025-54518: Improper isolation of shared resources within the CPU operation cache on Zen 2-based products could allow an attacker to

Trending: 31

NONECVE-2025-54509

CVE-2025-54509: Improper access control for register interface in the input-output memory management unit (IOMMU) could allow a privileg

Trending: 30

PRE-CVE

Multiple vulnerabilities in AMD products including ARM CPU translation bypass and AMD Auto Updater

Trending: 20

NONECVE-2026-0466

CVE-2026-0466: Improper access control in AMD uProf may allow a local attacker with user privileges to write to the kernel-shared memor

Trending: 18

NONECVE-2026-28237

CVE-2026-28237: Unrestricted resource allocation in AMD uProf may be exploitable to consume excessive system resources, potentially lead

Trending: 18

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Vulnerability Timeline

CVE Published

Apr 16, 2026

Discovered by ZDM

Apr 16, 2026

Actively Exploited

Apr 16, 2026

Patch Available

Apr 16, 2026

Updated: severity, cvssEstimate, activelyExploited

Apr 16, 2026

Version History

Last enriched 55d ago

v2Tier C55d ago

Updated product list to include EPYC 9004 and Embedded processors, changed severity to HIGH, and set CVSS estimate to 7.5.

severitycvssEstimateactivelyExploited

via VulDB

v155d ago

Initial creation