vulnerability
Ubuntu: USN-7561-1 (CVE-2023-31356): AMD Microcode vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:L/AC:L/Au:M/C:N/I:C/A:N) | Aug 13, 2024 | Jun 10, 2025 | Aug 18, 2025 |
Severity
4
CVSS
(AV:L/AC:L/Au:M/C:N/I:C/A:N)
Published
Aug 13, 2024
Added
Jun 10, 2025
Modified
Aug 18, 2025
Description
Incomplete system memory cleanup in SEV firmware could
allow a privileged attacker to corrupt guest private memory, potentially
resulting in a loss of data integrity.
Solution
ubuntu-upgrade-amd64-microcode
References
- CVE-2023-31356
- https://attackerkb.com/topics/CVE-2023-31356
- CWE-459
- UBUNTU-USN-7561-1
- URL-https://lore.kernel.org/all/[email protected]/
- URL-https://ubuntu.com/security/notices/USN-7561-1
- URL-https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.html
- URL-https://www.cve.org/CVERecord?id=CVE-2023-31356
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.