CVE-2023-4155

MEDIUM Year: 2023
CVSS v3 Score
5.6
Medium
Weakness Type
CWE-367
View all →

Vulnerability Description

A flaw was found in KVM AMD Secure Encrypted Virtualization (SEV) in the Linux kernel. A KVM guest using SEV-ES or SEV-SNP with multiple vCPUs can trigger a double fetch race condition vulnerability and invoke the `VMGEXIT` handler recursively. If an attacker manages to call the handler multiple times, they can trigger a stack overflow and cause a denial of service or potentially guest-to-host escape in kernel configurations without stack guard pages (`CONFIG_VMAP_STACK`).

Related Vulnerabilities

CVE-2024-2440

MEDIUM
CVSS:5.5(Medium)

A race condition in GitHub Enterprise Server allowed an existing admin to maintain permissions on a detached repository by making a GraphQL mutation to alter repository permissions while the repositor...

CWE-3672024

CVE-2025-21431

MEDIUM
CVSS:5.5(Medium)

Information disclosure may be there when a guest VM is connected.

CWE-3672025

CVE-2025-46805

MEDIUM
CVSS:5.5(Medium)

Screen version 5.0.0 and older version 4 releases have a TOCTOU race potentially allowing to send SIGHUP, SIGCONT to privileged processes when installed setuid-root.

CWE-3672025

CVE-2023-20521

MEDIUM
CVSS:5.7(Medium)

TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM records after memory content verification, potentially leading to loss of confidentiality or a denial of ...

CWE-3672023

CVE-2023-20523

MEDIUM
CVSS:5.7(Medium)

TOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leading to a loss of integrity or denial of service.

CWE-3672023