CVE-2021-3656

Name: CVE-2021-3656
Creator: NVD / NIST
Published: 2022-03-04T19:15:08.677+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.8/10EPSS 0.66%

Last modified Jun 17, 2026

CVE-2021-3656 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). EPSS estimates a 0.66% chance of exploitation in the next 30 days.

Description

A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB (virtual machine control block) provided by the L1 guest to spawn/handle a nested guest (L2). Due to improper validation of the "virt_ext" field, this issue could allow a malicious L1 to disable both VMLOAD/VMSAVE intercepts and VLS (Virtual VMLOAD/VMSAVE) for the L2 guest. As a result, the L2 guest would be allowed to read/write physical pages of the host, resulting in a crash of the entire system, leak of sensitive data or potential guest-to-host escape.

Metrics

CVSS 3.1

8.8/10

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

EPSS Probability

0.66%

46.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Linux	Linux Kernel	>= 4.13, < 4.14.245
Linux	Linux Kernel	>= 4.15, < 4.19.205
Linux	Linux Kernel	>= 4.20, < 5.4.142
Linux	Linux Kernel	>= 5.5, < 5.10.60
Linux	Linux Kernel	>= 5.11, < 5.13.12
Linux	Linux Kernel	5.14
Fedoraproject	Fedora	33
Fedoraproject	Fedora	34
Redhat	Software Collections	All versions
Redhat	Openstack	13
Redhat	Enterprise Linux	8.0
Redhat	Enterprise Linux Desktop	7.0
Redhat	Enterprise Linux Eus	8.1
Redhat	Enterprise Linux Eus	8.2
Redhat	Enterprise Linux Eus	8.4
Redhat	Enterprise Linux For Ibm Z Systems	7.0
Redhat	Enterprise Linux For Ibm Z Systems	8.0
Redhat	Enterprise Linux For Ibm Z Systems Eus	8.1
Redhat	Enterprise Linux For Ibm Z Systems Eus	8.2
Redhat	Enterprise Linux For Ibm Z Systems Eus	8.4
Redhat	Enterprise Linux For Power Big Endian	7.0
Redhat	Enterprise Linux For Power Little Endian	7.0
Redhat	Enterprise Linux For Power Little Endian	8.0
Redhat	Enterprise Linux For Power Little Endian Eus	8.1
Redhat	Enterprise Linux For Power Little Endian Eus	8.2
Redhat	Enterprise Linux For Power Little Endian Eus	8.4
Redhat	Enterprise Linux For Real Time	7
Redhat	Enterprise Linux For Real Time	8
Redhat	Enterprise Linux For Real Time For Nfv	7
Redhat	Enterprise Linux For Real Time For Nfv	8
Redhat	Enterprise Linux For Real Time For Nfv Tus	8.2
Redhat	Enterprise Linux For Real Time For Nfv Tus	8.4
Redhat	Enterprise Linux For Real Time Tus	8.2
Redhat	Enterprise Linux For Real Time Tus	8.4
Redhat	Enterprise Linux For Scientific Computing	7.0
Redhat	Enterprise Linux Server	7.0
Redhat	Enterprise Linux Server Aus	7.6
Redhat	Enterprise Linux Server Aus	7.7
Redhat	Enterprise Linux Server Aus	8.2
Redhat	Enterprise Linux Server Aus	8.4
Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	7.6
Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	8.1
Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	8.2
Redhat	Enterprise Linux Server For Power Little Endian Update Services For Sap Solutions	8.4
Redhat	Enterprise Linux Server Tus	7.6
Redhat	Enterprise Linux Server Tus	7.7
Redhat	Enterprise Linux Server Tus	8.2
Redhat	Enterprise Linux Server Tus	8.4
Redhat	Enterprise Linux Server Update Services For Sap Solutions	7.6
Redhat	Enterprise Linux Server Update Services For Sap Solutions	7.7

Showing 50 of 57 affected configurations. See NVD for the full list.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1983988Issue Tracking, Third Party Advisory
https://git.kernel.org/pub/scm/virt/kvm/kvm.git/commit/?id=c7dfa4009965a9b2d7b329ee970eb8da0d32f0bcPatch, Third Party Advisory
https://github.com/torvalds/linux/commit/c7dfa4009965a9b2d7b329ee970eb8da0d32f0bcPatch, Third Party Advisory
https://www.openwall.com/lists/oss-security/2021/08/16/1Mailing List, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1983988Issue Tracking, Third Party Advisory
https://git.kernel.org/pub/scm/virt/kvm/kvm.git/commit/?id=c7dfa4009965a9b2d7b329ee970eb8da0d32f0bcPatch, Third Party Advisory
https://github.com/torvalds/linux/commit/c7dfa4009965a9b2d7b329ee970eb8da0d32f0bcPatch, Third Party Advisory
https://www.openwall.com/lists/oss-security/2021/08/16/1Mailing List, Third Party Advisory

Timeline

Published: Mar 4, 2022
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2021-3656?

How severe is CVE-2021-3656?

CVE-2021-3656 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 0.66% probability of exploitation in the next 30 days.

How do I fix CVE-2021-3656?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2021-3656?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST