**Lenovo Security Advisory:**LEN-65525
**Potential Impact:**Information disclosure
**Severity:**Medium
**Scope of Impact:**Industry-wide
**CVE Identifier:**CVE-2020-12966
Summary Description:
AMD reported AMD EPYC™ Processors contain an information disclosure vulnerability in the Secure Encrypted Virtualization with Encrypted State (SEV-ES) and Secure Encrypted Virtualization with Secure Nested Paging (SEV-SNP). A local authenticated attacker could potentially exploit this vulnerability leading to leaking guest data by the malicious hypervisor.
Mitigation Strategy for Customers (what you should do to protect yourself):
AMD recommends updating system firmware to the version (or newer) indicated for your model in the Product Impact section.