Lucene search

K
cvelistAMDCVELIST:CVE-2023-20592
HistoryNov 14, 2023 - 6:54 p.m.

CVE-2023-20592

2023-11-1418:54:13
AMD
www.cve.org
1
amd
cpu
invd instruction
cache
vm memory
integrity
cve-2023-20592

6.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.0%

Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.

CNA Affected

[
  {
    "defaultStatus": "unaffected",
    "packageName": " ",
    "platforms": [
      "x86"
    ],
    "product": "1st Gen AMD EPYC™ Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "affected",
        "version": "various "
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "packageName": " ",
    "platforms": [
      "x86"
    ],
    "product": "2nd Gen AMD EPYC™ Processors",
    "vendor": "AMD",
    "versions": [
      {
        "status": "affected",
        "version": "various "
      }
    ]
  },
  {
    "defaultStatus": "unaffected",
    "packageName": "PI",
    "platforms": [
      "x86"
    ],
    "product": "3rd Gen AMD EPYC™ Processors ",
    "vendor": " AMD",
    "versions": [
      {
        "status": "affected",
        "version": "various "
      }
    ]
  }
]

6.8 Medium

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

16.0%