CVE-2023-31364

CVSS

No CVSS.

I

mproper handling of direct memory writes in the input-output memory management unit could allow a malicious guest virtual machine (VM) to flood a host with writes, potentially causing a fatal machine check error resulting in denial of service.

References

Link	Resource
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7059.html

Configurations

No configuration.

History

27 Feb 2026, 14:06

Type	Values Removed	Values Added
Summary		(es) El manejo inadecuado de las escrituras directas en memoria en la unidad de gestión de memoria de entrada/salida podría permitir que una máquina virtual (VM) invitada maliciosa inunde un anfitrión con escrituras, causando potencialmente un error fatal de comprobación de máquina que resultaría en denegación de servicio.

26 Feb 2026, 21:28

Type	Values Removed	Values Added
New CVE

Information

Published : 2026-02-26 21:28

Updated : 2026-02-27 14:06

NVD link : CVE-2023-31364

Mitre link : CVE-2023-31364

CVE.ORG link : CVE-2023-31364

JSON object : View

Products Affected

No product.

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

{"id": "CVE-2023-31364", "cveTags": [], "metrics": {"cvssMetricV40": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"Safety": "NOT_DEFINED", "version": "4.0", "Recovery": "NOT_DEFINED", "baseScore": 8.3, "Automatable": "NOT_DEFINED", "attackVector": "NETWORK", "baseSeverity": "HIGH", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "exploitMaturity": "NOT_DEFINED", "providerUrgency": "NOT_DEFINED", "userInteraction": "NONE", "attackComplexity": "LOW", "attackRequirements": "NONE", "privilegesRequired": "LOW", "subIntegrityImpact": "NONE", "vulnIntegrityImpact": "NONE", "integrityRequirement": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "subAvailabilityImpact": "HIGH", "vulnAvailabilityImpact": "HIGH", "availabilityRequirement": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "subConfidentialityImpact": "NONE", "vulnConfidentialityImpact": "NONE", "confidentialityRequirement": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "vulnerabilityResponseEffort": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED"}}]}, "published": "2026-02-26T21:28:47.037", "references": [{"url": "https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7059.html", "source": "[email protected]"}], "vulnStatus": "Awaiting Analysis", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-119"}]}], "descriptions": [{"lang": "en", "value": "Improper handling of direct memory writes in the input-output memory management unit could allow a malicious guest virtual machine (VM) to flood a host with writes, potentially causing a fatal machine check error resulting in denial of service."}, {"lang": "es", "value": "El manejo inadecuado de las escrituras directas en memoria en la unidad de gesti\u00f3n de memoria de entrada/salida podr\u00eda permitir que una m\u00e1quina virtual (VM) invitada maliciosa inunde un anfitri\u00f3n con escrituras, causando potencialmente un error fatal de comprobaci\u00f3n de m\u00e1quina que resultar\u00eda en denegaci\u00f3n de servicio."}], "lastModified": "2026-02-27T14:06:37.987", "sourceIdentifier": "[email protected]"}