IOMMU Improper Input Validation Lets Hypervisor Reconfigure Registers
CVE-2024-21953 Published on February 10, 2026

Improper input validation in IOMMU could allow a malicious hypervisor to reconfigure IOMMU registers resulting in loss of guest data integrity.

NVD

Weakness Type

Improper Validation of Specified Quantity in Input

The product receives input that is expected to specify a quantity (such as size or length), but it does not validate or incorrectly validates that the quantity has the required properties.

Affected Versions

AMD EPYC™ 9004 Series Processors:

Version GenoaPI 1.0.0.F is unaffected.

AMD EPYC™ 8004 Series Processors:

Version GenoaPI 1.0.0.F is unaffected.

AMD EPYC™ Embedded 9004 Series Processors:

Version EmbGenoaPI-SP5 1.0.0.B is unaffected.

Exploit Probability

EPSS

0.03%

Percentile

9.73%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

IOMMU Improper Input Validation Lets Hypervisor Reconfigure RegistersCVE-2024-21953 Published on February 10, 2026

Weakness Type

Improper Validation of Specified Quantity in Input

Affected Versions

Exploit Probability

IOMMU Improper Input Validation Lets Hypervisor Reconfigure Registers
CVE-2024-21953 Published on February 10, 2026