CVE-2023-20578

🗓️ 13 Aug 2024 16:52:58Reported by AMDType

TOCTOU vulnerability in SMM BIOS/UEF

Reporter	Title	Published	Views	Family All 12
Amd	AMD Server Vulnerabilities – August 2024	13 Aug 202400:00	–	amd
Amd	Client Vulnerabilities – Aug 2024	13 Aug 202400:00	–	amd
Amd	AMD Embedded Processors Vulnerabilities – Aug 2024	13 Aug 202400:00	–	amd
Circl	CVE-2023-20578	13 Aug 202420:28	–	circl
CNNVD	AMD Secure Processor和AMD Secure Encrypted Virtualization 安全漏洞	13 Aug 202400:00	–	cnnvd
Cvelist	CVE-2023-20578	13 Aug 202416:52	–	cvelist
EUVD	EUVD-2023-24757	3 Oct 202520:07	–	euvd
Hewlett-Packard	AMD Client UEFI Firmware August 2024 Security Update	13 Aug 202400:00	–	hp
NVD	CVE-2023-20578	13 Aug 202417:15	–	nvd
Positive Technologies	PT-2024-11955 · Smm +1 · Smm +1	13 Aug 202400:00	–	ptsecurity

NVD

Node

amd epyc_8024pn_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8024pnMatch-

Node

amd epyc_8024p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8024pMatch-

Node

amd epyc_8124pn_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8124pnMatch-

Node

amd epyc_8124p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8124pMatch-

Node

amd epyc_8224pn_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8224pnMatch-

Node

amd epyc_8224p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8224pMatch-

Node

amd epyc_8324pn_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8324pnMatch-

Node

amd epyc_8324p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8324pMatch-

Node

amd epyc_8434pn_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8434pnMatch-

Node

amd epyc_8434p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8434pMatch-

Node

amd epyc_8534pn_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8534pnMatch-

Node

amd epyc_8534p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_8534pMatch-

Node

amd epyc_9734_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9734Match-

Node

amd epyc_9754s_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9754sMatch-

Node

amd epyc_9754_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9754Match-

Node

amd epyc_9184x_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9184xMatch-

Node

amd epyc_9384x_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9384xMatch-

Node

amd epyc_9684x_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9684xMatch-

Node

amd epyc_9124_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9124Match-

Node

amd epyc_9174f_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9174fMatch-

Node

amd epyc_9224_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9224Match-

Node

amd epyc_9254_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9254Match-

Node

amd epyc_9274f_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9274fMatch-

Node

amd epyc_9334_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9334Match-

Node

amd epyc_9354_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9354Match-

Node

amd epyc_9354p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9354pMatch-

Node

amd epyc_9374f_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9374fMatch-

Node

amd epyc_9454_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9454Match-

Node

amd epyc_9454p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9454pMatch-

Node

amd epyc_9474f_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9474fMatch-

Node

amd epyc_9534_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9534Match-

Node

amd epyc_9554_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9554Match-

Node

amd epyc_9554p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9554pMatch-

Node

amd epyc_9634_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9634Match-

Node

amd epyc_9654_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9654Match-

Node

amd epyc_9654p_firmwareRange<genoapi_1.0.0.2

AND

amd epyc_9654pMatch-

Node

amd epyc_7203_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7203Match-

Node

amd epyc_7203p_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7203pMatch-

Node

amd epyc_72f3_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_72f3Match-

Node

amd epyc_7303_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7303Match-

Node

amd epyc_7303p_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7303pMatch-

Node

amd epyc_7313_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7313Match-

Node

amd epyc_7313p_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7313pMatch-

Node

amd epyc_7343_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7343Match-

Node

amd epyc_73f3_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_73f3Match-

Node

amd epyc_7373x_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7373xMatch-

Node

amd epyc_7413_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7413Match-

Node

amd epyc_7443_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7443Match-

Node

amd epyc_7443p_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7443pMatch-

Node

amd epyc_74f3_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_74f3Match-

Node

amd epyc_7453_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7453Match-

Node

amd epyc_7473x_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7473xMatch-

Node

amd epyc_7513_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7513Match-

Node

amd epyc_7543_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7543Match-

Node

amd epyc_7543p_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7543pMatch-

Node

amd epyc_75f3_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_75f3Match-

Node

amd epyc_7573x_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7573xMatch-

Node

amd epyc_7643_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7643Match-

Node

amd epyc_7773x_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7773xMatch-

Node

amd epyc_7643p_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7643pMatch-

Node

amd epyc_7663_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7663Match-

Node

amd epyc_7663p_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7663pMatch-

Node

amd epyc_7713_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7713Match-

Node

amd epyc_7713p_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7713pMatch-

Node

amd epyc_7763_firmwareRange<milanpi_1.0.0.5

AND

amd epyc_7763Match-

Node

amd epyc_7h12_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7h12Match-

Node

amd epyc_7f72_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7f72Match-

Node

amd epyc_7f52_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7f52Match-

Node

amd epyc_7f32_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7f32Match-

Node

amd epyc_7742_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7742Match-

Node

amd epyc_7702p_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7702pMatch-

Node

amd epyc_7702_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7702Match-

Node

amd epyc_7662_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7662Match-

Node

amd epyc_7642_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7642Match-

Node

amd epyc_7552_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7552Match-

Node

amd epyc_7542_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7542Match-

Node

amd epyc_7532_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7532Match-

Node

amd epyc_7502p_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7502pMatch-

Node

amd epyc_7502_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7502Match-

Node

amd epyc_7452_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7452Match-

Node

amd epyc_7402p_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7402pMatch-

Node

amd epyc_7402_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7402Match-

Node

amd epyc_7352_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7352Match-

Node

amd epyc_7302p_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7302pMatch-

Node

amd epyc_7302_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7302Match-

Node

amd epyc_7282_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7282Match-

Node

amd epyc_7272_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7272Match-

Node

amd epyc_7262_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7262Match-

Node

amd epyc_7252_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7252Match-

Node

amd epyc_7232p_firmwareRange<romepi_1.0.0.g

AND

amd epyc_7232pMatch-

Node

amd epyc_7601_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7601Match-

Node

amd epyc_7551p_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7551pMatch-

Node

amd epyc_7551_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7551Match-

Node

amd epyc_7501_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7501Match-

Node

amd epyc_7451_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7451Match-

Node

amd epyc_7401p_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7401pMatch-

Node

amd epyc_7401_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7401Match-

Node

amd epyc_7371_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7371Match-

Node

amd epyc_7351p_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7351pMatch-

Node

amd epyc_7351_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7351Match-

Node

amd epyc_7301_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7301Match-

Node

amd epyc_7281_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7281Match-

Node

amd epyc_7261_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7261Match-

Node

amd epyc_7251_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7251Match-

Node

amd epyc_7001_firmwareRange<naplespi_1.0.0.k

AND

amd epyc_7001Match-

[
  {
    "defaultStatus": "affected",
    "packageName": "PI",
    "product": "AMD EPYC™ 7001 Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "NaplesPI 1.0.0.K",
        "versionType": "PI"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD EPYC™ 7002 Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "RomePI 1.0.0.G"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD EPYC™ 7003 Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "MilanPI 1.0.0.B"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD EPYC™ 9004 Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "GenoaPI 1.0.0.2"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD Ryzen™ 7000 Series Desktop Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "ComboAM5 1.0.0.1"
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "product": "AMD Ryzen™ Threadripper™ PRO 5000WX Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "ChagallWSPI-sWRX8  1.0.0.7"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD Ryzen™ 7020 Series Processors with Radeon™ Graphics",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "MendocinoPI-FT6 1.0.0.0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD Ryzen™ 6000 Series Processors with Radeon™ Graphics",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "RembrandtPI-FP7 1.0.0.9b"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD Ryzen™ 7035 Series Processors with Radeon™ Graphics",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "RembrandtPI-FP7 1.0.0.9b"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD EPYC™ Embedded 3000",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "SnowyOwl  PI 1.1.0.A"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD EPYC™ Embedded 7002",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "EmbRomePI-SP3 1.0.0.A"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD EPYC™ Embedded 7003",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "EmbMilanPI-SP3 1.0.0.7"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD EPYC™ Embedded 9003",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "EmbGenoaPI-SP5  1.0.0.0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD Ryzen™ Embedded 7000",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "EmbeddedAM5PI  1.0.0.0"
      }
    ]
  },
  {
    "defaultStatus": "affected",
    "product": "AMD RyzenTM Embedded V3000",
    "vendor": "AMD",
    "versions": [
      {
        "status": "unaffected",
        "version": "EmbeddedPI-FP7r2 1.0.0.8"
      }
    ]
  }
]

Source	Link
amd	www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.html

18 Mar 2025 20:15Current

7.8High risk

Vulners AI Score7.8

CVSS 3.16.4 - 7.5

EPSS0.00076

SSVC

CWE-367