What the vulnerability does

01Description

A flaw was found in the KVM's AMD nested virtualization (SVM). A malicious L1 guest could purposely fail to intercept the shutdown of a cooperative nested guest (L2), possibly leading to a page fault and kernel panic in the host (L0).

Key dates

02Disclosure timeline

October 24, 2022 CVE published
May 7, 2025 Record updated