Improper handling of direct memory writes in the input-output memory management unit could allow a malicious guest virtual machine (VM) to flood a host with writes, potentially causing a fatal machine check error resulting in denial of service.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Attack Requirements None

User Interaction None

Vulnerable System Confidentiality Impact None

Vulnerable System Integrity Impact None

Vulnerable System Availability Impact High

Subsequent System Confidentiality Impact None

Subsequent System Integrity Impact None

Subsequent System Availability Impact High

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Affected Vendors & Products

Vendors Products
Amd
  • Athlon 3000 Series Mobile Processors With Radeon Graphics
  • Epyc 7001 Series Processors
  • Epyc 7002 Series Processors
  • Epyc 7003 Series Processors
  • Epyc 8004 Series Processors
  • Epyc 9004 Series Processors
  • Epyc 9005 Series Processors
  • Epyc Embedded 3000 Series Processors
  • Epyc Embedded 7002 Series Processors
  • Epyc Embedded 7003 Series Processors
  • Epyc Embedded 8004 Series Processors
  • Epyc Embedded 9004 Series Processors
  • Epyc Embedded 9005 Series Processors
  • Ryzen 3000 Series Mobile Processors With Radeon Graphics
  • Ryzen 4000 Series Desktop Processors
  • Ryzen 4000 Series Mobile Processors With Radeon Graphics
  • Ryzen 5000 Series Mobile Processors With Radeon Graphics
  • Ryzen 6000 Series Processors With Radeon Graphics
  • Ryzen 7000 Series Desktop Processors
  • Ryzen 7020 Series Processors With Radeon Graphics
  • Ryzen 7040 Series Mobile Processors With Radeon Graphics
  • Ryzen 7045 Series Mobile Processors With Radeon Graphics
  • Ryzen 8000 Series Desktop Processors
  • Ryzen Embedded 5000 Series Processors
  • Ryzen Embedded 7000 Series Processors
  • Ryzen Embedded 8000 Series Processors
  • Ryzen Embedded R1000 Series Processors
  • Ryzen Embedded R2000 Series Processors
  • Ryzen Embedded V1000 Series Processors
  • Ryzen Embedded V2000 Series Processors
  • Ryzen Embedded V3000 Series Processors
  • Ryzen Threadripper Pro 3000 Wx-series Processors
  • Ryzen Threadripper Pro 5000 Wx-series Processors

No data.

No data.

References
Link Providers
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-7059.html cve-icon cve-icon
History

Fri, 27 Feb 2026 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Amd
Amd athlon 3000 Series Mobile Processors With Radeon Graphics
Amd epyc 7001 Series Processors
Amd epyc 7002 Series Processors
Amd epyc 7003 Series Processors
Amd epyc 8004 Series Processors
Amd epyc 9004 Series Processors
Amd epyc 9005 Series Processors
Amd epyc Embedded 3000 Series Processors
Amd epyc Embedded 7002 Series Processors
Amd epyc Embedded 7003 Series Processors
Amd epyc Embedded 8004 Series Processors
Amd epyc Embedded 9004 Series Processors
Amd epyc Embedded 9005 Series Processors
Amd ryzen 3000 Series Mobile Processors With Radeon Graphics
Amd ryzen 4000 Series Desktop Processors
Amd ryzen 4000 Series Mobile Processors With Radeon Graphics
Amd ryzen 5000 Series Mobile Processors With Radeon Graphics
Amd ryzen 6000 Series Processors With Radeon Graphics
Amd ryzen 7000 Series Desktop Processors
Amd ryzen 7020 Series Processors With Radeon Graphics
Amd ryzen 7040 Series Mobile Processors With Radeon Graphics
Amd ryzen 7045 Series Mobile Processors With Radeon Graphics
Amd ryzen 8000 Series Desktop Processors
Amd ryzen Embedded 5000 Series Processors
Amd ryzen Embedded 7000 Series Processors
Amd ryzen Embedded 8000 Series Processors
Amd ryzen Embedded R1000 Series Processors
Amd ryzen Embedded R2000 Series Processors
Amd ryzen Embedded V1000 Series Processors
Amd ryzen Embedded V2000 Series Processors
Amd ryzen Embedded V3000 Series Processors
Amd ryzen Threadripper Pro 3000 Wx-series Processors
Amd ryzen Threadripper Pro 5000 Wx-series Processors
Vendors & Products Amd
Amd athlon 3000 Series Mobile Processors With Radeon Graphics
Amd epyc 7001 Series Processors
Amd epyc 7002 Series Processors
Amd epyc 7003 Series Processors
Amd epyc 8004 Series Processors
Amd epyc 9004 Series Processors
Amd epyc 9005 Series Processors
Amd epyc Embedded 3000 Series Processors
Amd epyc Embedded 7002 Series Processors
Amd epyc Embedded 7003 Series Processors
Amd epyc Embedded 8004 Series Processors
Amd epyc Embedded 9004 Series Processors
Amd epyc Embedded 9005 Series Processors
Amd ryzen 3000 Series Mobile Processors With Radeon Graphics
Amd ryzen 4000 Series Desktop Processors
Amd ryzen 4000 Series Mobile Processors With Radeon Graphics
Amd ryzen 5000 Series Mobile Processors With Radeon Graphics
Amd ryzen 6000 Series Processors With Radeon Graphics
Amd ryzen 7000 Series Desktop Processors
Amd ryzen 7020 Series Processors With Radeon Graphics
Amd ryzen 7040 Series Mobile Processors With Radeon Graphics
Amd ryzen 7045 Series Mobile Processors With Radeon Graphics
Amd ryzen 8000 Series Desktop Processors
Amd ryzen Embedded 5000 Series Processors
Amd ryzen Embedded 7000 Series Processors
Amd ryzen Embedded 8000 Series Processors
Amd ryzen Embedded R1000 Series Processors
Amd ryzen Embedded R2000 Series Processors
Amd ryzen Embedded V1000 Series Processors
Amd ryzen Embedded V2000 Series Processors
Amd ryzen Embedded V3000 Series Processors
Amd ryzen Threadripper Pro 3000 Wx-series Processors
Amd ryzen Threadripper Pro 5000 Wx-series Processors

Thu, 26 Feb 2026 21:15:00 +0000

Type Values Removed Values Added
Description Improper handling of direct memory writes in the input-output memory management unit could allow a malicious guest virtual machine (VM) to flood a host with writes, potentially causing a fatal machine check error resulting in denial of service.
Weaknesses CWE-119
References
Metrics cvssV4_0

{'score': 8.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H'}
cve-icon MITRE

Status: PUBLISHED

Assigner: AMD

Published: 2026-02-26T20:33:28.086Z

Updated: 2026-02-26T20:33:28.086Z

Reserved: 2023-04-27T15:25:41.429Z

Link: CVE-2023-31364

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-02-26T21:28:47.037

Modified: 2026-02-26T21:28:47.037

Link: CVE-2023-31364

cve-icon Redhat

No data.