Intel SGX and AMD SEV-SNP DDR4 memory-encryption bypass Battering RAM security flaw
Vulnerability
Summary
Hide ▲
Show ▼
Researchers demonstrated Battering RAM, a $50 DDR4 interposer attack that bypasses Intel SGX and AMD SEV-SNP protections on public-cloud confidential computing workloads. The flaw can redirect protected addresses to attacker-controlled locations, enabling arbitrary reads and writes of encrypted memory. On impacted systems, the attack can undermine remote attestation and allow backdoors into protected workloads.
Related Happenings
Nvidia GPU GPUBreach Rowhammer-style page-table corruption privilege-escalation flaw
Vulnerability
First: 07.04.2026 14:31
Last: 07.04.2026 14:31
Sources 1
About this happening:
Researchers demonstrated **GPUBreach**, a **Rowhammer-style weakness** in **Nvidia GPUs** that can corrupt **GPU page tables** and enable **arbitrary read-write access**. When pai...
Nvidia GPU GPUBreach Rowhammer-style page-table corruption privilege-escalation flaw
VulnerabilityAbout this happening: Researchers demonstrated **GPUBreach**, a **Rowhammer-style weakness** in **Nvidia GPUs** that can corrupt **GPU page tables** and enable **arbitrary read-write access**. When pai...
GPUBreach GPU Rowhammer research enables GDDR6 page-table corruption and privilege escalation
Technical Analysis
First: 07.04.2026 00:44
Last: 07.04.2026 00:44
Sources 1
About this happening:
**GPUBreach** research shows **Rowhammer** bit flips in **GDDR6** can corrupt **GPU page tables**, creating a path to **arbitrary GPU memory read/write** and potential **full syst...
GPUBreach GPU Rowhammer research enables GDDR6 page-table corruption and privilege escalation
Technical AnalysisAbout this happening: **GPUBreach** research shows **Rowhammer** bit flips in **GDDR6** can corrupt **GPU page tables**, creating a path to **arbitrary GPU memory read/write** and potential **full syst...
WireTap memory-bus interposer analysis breaks Intel SGX attestation on DDR4 systems
Technical Analysis
First: 01.10.2025 20:20
Last: 01.10.2025 20:20
Sources 1
About this happening:
Researchers demonstrated **WireTap**, a **memory-bus interposer** attack that can extract **Intel SGX attestation keys** on **DDR4 systems**, undermining enclave confidentiality a...
WireTap memory-bus interposer analysis breaks Intel SGX attestation on DDR4 systems
Technical AnalysisAbout this happening: Researchers demonstrated **WireTap**, a **memory-bus interposer** attack that can extract **Intel SGX attestation keys** on **DDR4 systems**, undermining enclave confidentiality a...
Battering RAM interposer attack breaks Intel SGX and AMD SEV-SNP confidential computing
Technical Analysis
First: 01.10.2025 17:54
Last: 01.10.2025 17:54
Sources 1
How related:
The researchers demonstrate how they can break this encryption by building a low-cost imposer that sits in the memory path of the processor-based memory encryption that cloud-based systems use to protect sensitive data.
About this happening:
Researchers demonstrated **Battering RAM**, a **$50** interposer attack that can bypass **Intel SGX** and **AMD SEV-SNP**, undermining confidential-computing protections for cloud...
Battering RAM interposer attack breaks Intel SGX and AMD SEV-SNP confidential computing
Technical AnalysisHow related: The researchers demonstrate how they can break this encryption by building a low-cost imposer that sits in the memory path of the processor-based memory encryption that cloud-based systems use to protect sensitive data.
About this happening: Researchers demonstrated **Battering RAM**, a **$50** interposer attack that can bypass **Intel SGX** and **AMD SEV-SNP**, undermining confidential-computing protections for cloud...
QEMU VMScape speculative execution flaw (CVE-2025-40300)
Vulnerability
First: 11.09.2025 18:05
Last: 11.09.2025 18:05
Sources 1
About this happening:
Researchers confirmed **VMScape**, a **Spectre-like** flaw in **QEMU**, can let a malicious **VM** leak **cryptographic keys** and other secrets from **AMD** and **Intel** systems...
QEMU VMScape speculative execution flaw (CVE-2025-40300)
VulnerabilityAbout this happening: Researchers confirmed **VMScape**, a **Spectre-like** flaw in **QEMU**, can let a malicious **VM** leak **cryptographic keys** and other secrets from **AMD** and **Intel** systems...
Timeline
-
30.09.2025 21:42 3 articles · 7mo ago
Battering RAM disclosed against Intel SGX and AMD SEV-SNP
Initial DisclosureResearchers from KU Leuven and the University of Birmingham demonstrated Battering RAM, a $50 DDR4 interposer attack that bypasses Intel SGX and AMD SEV-SNP protections on public-cloud confidential computing workloads. The interposer behaves transparently during startup, passes trust checks, and later redirects protected addresses to attacker-controlled locations, enabling corruption or replay of encrypted memory, arbitrary read and write access, and possible remote attestation compromise. The attack affects systems using DDR4 memory, and defending against it would require a fundamental redesign of memory encryption.
Show sources
- $50 Battering RAM Attack Breaks Intel and AMD Cloud Security Protections — thehackernews.com — 30.09.2025 21:42
- $50 Battering RAM Attack Breaks Intel and AMD Cloud Security Protections — thehackernews.com — 30.09.2025 21:42
- A $50 'Battering RAM' Can Bust Confidential Computing — www.darkreading.com — 01.10.2025 17:54