Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2023-20571
Analyzed
More InfoOfficial Page
Source-psirt@amd.com
View Known Exploited Vulnerability (KEV) details
Published At-14 Nov, 2023 | 19:15
Updated At-28 Nov, 2023 | 18:05

A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary3.18.1HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Type: Primary
Version: 3.1
Base score: 8.1
Base severity: HIGH
Vector:
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CPE Matches
Advanced Micro Devices, Inc.
amd
>>ryzen_3_5100_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_3_5100_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_3_5100>>-
cpe:2.3:h:amd:ryzen_3_5100:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_3_5300g_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_3_5300g_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_3_5300g>>-
cpe:2.3:h:amd:ryzen_3_5300g:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_3_5300ge_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_3_5300ge_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_3_5300ge>>-
cpe:2.3:h:amd:ryzen_3_5300ge:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_5500_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_5_5500_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_5500>>-
cpe:2.3:h:amd:ryzen_5_5500:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_5600g_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_5_5600g_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_5600g>>-
cpe:2.3:h:amd:ryzen_5_5600g:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_5600ge_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_5_5600ge_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_5600ge>>-
cpe:2.3:h:amd:ryzen_5_5600ge:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_5700_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_7_5700_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_5700>>-
cpe:2.3:h:amd:ryzen_7_5700:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_5700g_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_7_5700g_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_5700g>>-
cpe:2.3:h:amd:ryzen_7_5700g:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_5700ge_firmware>>Versions before comboam4v2_1.2.0.b(exclusive)
cpe:2.3:o:amd:ryzen_7_5700ge_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_5700ge>>-
cpe:2.3:h:amd:ryzen_7_5700ge:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_7500f_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_5_7500f_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_7500f>>-
cpe:2.3:h:amd:ryzen_5_7500f:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_7600_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_5_7600_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_7600>>-
cpe:2.3:h:amd:ryzen_5_7600:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_7600x_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_5_7600x_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_5_7600x>>-
cpe:2.3:h:amd:ryzen_5_7600x:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_7700_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_7_7700_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_7700>>-
cpe:2.3:h:amd:ryzen_7_7700:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_7700x_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_7_7700x_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_7700x>>-
cpe:2.3:h:amd:ryzen_7_7700x:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_7800x3d_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_7_7800x3d_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_7_7800x3d>>-
cpe:2.3:h:amd:ryzen_7_7800x3d:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7900_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_9_7900_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7900>>-
cpe:2.3:h:amd:ryzen_9_7900:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7900x_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_9_7900x_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7900x>>-
cpe:2.3:h:amd:ryzen_9_7900x:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7900x3d_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_9_7900x3d_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7900x3d>>-
cpe:2.3:h:amd:ryzen_9_7900x3d:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7950x_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_9_7950x_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7950x>>-
cpe:2.3:h:amd:ryzen_9_7950x:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7950x3d_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_9_7950x3d_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_9_7950x3d>>-
cpe:2.3:h:amd:ryzen_9_7950x3d:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_pro_3900_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_pro_3900_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_pro_3900>>-
cpe:2.3:h:amd:ryzen_pro_3900:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_pro_7645_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_pro_7645_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_pro_7645>>-
cpe:2.3:h:amd:ryzen_pro_7645:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_pro_7745_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_pro_7745_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_pro_7745>>-
cpe:2.3:h:amd:ryzen_pro_7745:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_pro_7945_firmware>>Versions before comboam5_1.0.7.0(exclusive)
cpe:2.3:o:amd:ryzen_pro_7945_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_pro_7945>>-
cpe:2.3:h:amd:ryzen_pro_7945:-:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_3_5125c_firmware>>Versions before cezannepi-fp6_1.0.0.f(exclusive)
cpe:2.3:o:amd:ryzen_3_5125c_firmware:*:*:*:*:*:*:*:*
Advanced Micro Devices, Inc.
amd
>>ryzen_3_5125c>>-
cpe:2.3:h:amd:ryzen_3_5125c:-:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-362Primarynvd@nist.gov
CWE ID: CWE-362
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002psirt@amd.com
Vendor Advisory
Hyperlink: https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4002
Source: psirt@amd.com
Resource:
Vendor Advisory
Change History
0Changes found
Details not found