Hardware vulnerabilities
info
Privatemode is not affected by any known hardware vulnerability.
Hardware vulnerabilities can potentially affect the security properties of confidential-computing technologies. This document lists recently published vulnerabilities and their effect on Privatemode.
In the current version, Privatemode builds on AMD SEV-SNP and the confidential-computing features of the Nvidia H100.
Edgeless Systems, the company behind Privatemode, works closely with hardware vendors to ensure the mitigation of any potential hardware vulnerabilities ahead of time.
Recently published vulnerabilities
| Vulnerability | CVE | Affected hardware | Potential impact (unmitigated) | Privatemode mitigation status | Privatemode mitigation description |
|---|---|---|---|---|---|
| Heracles | - | AMD SEV-SNP | Reads from CVM memory for advanced attacker with root-level access to host | Mitigated ✅ | Combination of: (1) firmware patch from AMD, (2) kernel patch from Edgeless Systems, (3) corresponding client-side remote attestation |
| BadRAM | CVE-2024-21944 | AMD SEV-SNP | Access to CVM memory for advanced attacker with hardware access and root-level access to host | Mitigated ✅ | Firmware patch from AMD |
| Battering RAM | - | AMD SEV-SNP | Access to CVM memory for advanced attacker with hardware access and root-level access to host | Mitigated ✅ | Attack only works for DDR4 RAM. Privatemode only uses 4th Gen AMD EPYC CPUs, which require DDR5. This is checked in client-side-remote attestation. |