AMD has released security fixes for a flaw named RMPocalypse that compromises Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). This vulnerability allows remote attackers to bypass confidentiality and integrity protections by manipulating the RMP table, affecting several AMD EPYC processor series. #RMPocalypse #SEV-SNP #AMDProcessors #EPYC #Vulnerability
Keypoints
- RMPocalypse is a security flaw affecting AMD’s SEV-SNP technology that exploits incomplete protections in the RMP table.
- The vulnerability allows attackers to access or modify sensitive data in virtualized environments, breaching confidentiality and integrity.
- It impacts multiple AMD EPYC processor series, with some fixes scheduled for November 2025.
- Microsoft and Supermicro are working on remediations, including BIOS updates and cloud cluster patches.
- Researchers warn that a single overwrite in the RMP can compromise the entire security mechanism, leading to full virtual machine breaches.
Read More: https://thehackernews.com/2025/10/rmpocalypse-single-8-byte-write.html