Insufficient RMP Checks in IOMMU Affecting AMD Products
CVE-2023-20585

5.6MEDIUM

Key Information:

Vendor: Amd
Status: Amd Epyc™ 7003 Series Processors; Amd Epyc™ 9004 Series Processors; Amd Epyc™ Embedded 7003 Series Processors; Amd Epyc™ Embedded 9004 Series Processors
Vendor: CVE Published:; 16 April 2026

What is CVE-2023-20585?

The vulnerability arises from insufficient validation of the Remapping Protection Mechanism (RMP) when accessing host buffers in AMD's IOMMU implementations. An attacker with sufficient privileges, specifically through a compromised hypervisor, could exploit this weakness to trigger an out of bounds condition, potentially leading to unauthorized access and loss of integrity for confidential guest data. This issue underscores the importance of rigorous security checks in hypervisor and memory access mechanisms to maintain system integrity.

Affected Version(s)

AMD EPYC™ 7003 Series Processors SEV FW 1.37.23

AMD EPYC™ 9004 Series Processors SEV FW 1.37.31

AMD EPYC™ Embedded 7003 Series Processors EmbMilanPI-SP3 1.0.0.B

References

https://www.amd.com/en/resources/product-security/bulleti...

CVSS V4

Score:

5.6

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Local

Attack Complexity:

High

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

None

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 16, 2026
Vulnerability Reserved
Oct 27, 2022

CVE-2023-20585 Data

JSON

Amd

What is CVE-2023-20585?

Affected Version(s)

References

CVSS V4

Timeline