Researchers have discovered a software-only vulnerability named 'Fabricked' that bypasses AMD's SEV-SNP confidential computing protections. This flaw allows malicious cloud hosts to read and write to protected virtual machine memory by exploiting how the CPU's Infinity Fabric handles memory routing during boot. The exploit, which has a 100% success rate and requires no code execution within the victim VM, can also forge cryptographic attestation reports, undermining tenant trust in cloud environments. AMD has acknowledged the vulnerability and is working on firmware updates. AI
Summary written by gemini-2.5-flash-lite from 1 source. How we write summaries →
IMPACT Undermines trust in cloud environments relying on hardware-level VM protection, potentially impacting AI workloads requiring confidential computing.
RANK_REASON Researchers disclosed a novel vulnerability in a hardware security feature. [lever_c_demoted from research: ic=1 ai=0.7]
