Lucene search
HistoryAug 08, 2023 - 6:15 p.m.
CVE-2023-20555
input validation
cpmdisplayfeaturesmm
smm memory
arbitrary code execution
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
Insufficient input validation in
CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting
an arbitrary bit in an attacker-controlled pointer potentially leading to
arbitrary code execution in SMM.
Affected configurations
Node
amdryzen_3_3300_firmwareRange<comboam4_pi_v1_1.0.0.a
amdryzen_3_3300Match-
Node
amdryzen_3_3300x_firmwareRange<comboam4_pi_v1_1.0.0.a
amdryzen_3_3300xMatch-
Node
amdryzen_5_3600_firmwareRange<comboam4_pi_v1_1.0.0.a
amdryzen_5_3600Match-
Node
amdryzen_5_3600x_firmwareRange<comboam4_pi_v1_1.0.0.a
amdryzen_5_3600xMatch-
Node
amdryzen_7_3700_firmwareRange<comboam4_pi_v1_1.0.0.a
amdryzen_7_3700Match-
Node
amdryzen_7_3700x_firmwareRange<comboam4_pi_v1_1.0.0.a
amdryzen_7_3700xMatch-
Node
amdryzen_9_3800x_firmwareRange<comboam4_pi_v1_1.0.0.a
amdryzen_9_3800xMatch-
Node
amdryzen_9_3850x_firmwareRange<comboam4_pi_v1_1.0.0.a
amdryzen_9_3850xMatch-
Node
amdryzen_3_3300_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_3_3300Match-
Node
amdryzen_3_3300x_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_3_3300xMatch-
Node
amdryzen_5_3600_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_5_3600Match-
Node
amdryzen_5_3600x_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_5_3600xMatch-
Node
amdryzen_7_3700_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_7_3700Match-
Node
amdryzen_7_3700x_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_7_3700xMatch-
Node
amdryzen_9_3800x_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_9_3800xMatch-
Node
amdryzen_9_3850x_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_9_3850xMatch-
Node
amdryzen_9_5950x_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_9_5950xMatch-
Node
amdryzen_9_5900x_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_9_5900xMatch-
Node
amdryzen_9_5900_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_9_5900Match-
Node
amdryzen_9_pro_5945_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_9_pro_5945Match-
Node
amdryzen_7_5800x3d_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_7_5800x3dMatch-
Node
amdryzen_7_5800x_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_7_5800xMatch-
Node
amdryzen_7_5800_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_7_5800Match-
Node
amdryzen_7_5700x_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_7_5700xMatch-
Node
amdryzen_7_pro_5845_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_7_pro_5845Match-
Node
amdryzen_5_5600x3d_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_5_5600x3dMatch-
Node
amdryzen_5_5600x_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_5_5600xMatch-
Node
amdryzen_5_5600_firmwareRange<comboam4_v2_pi_1.2.0.a
amdryzen_5_5600Match-
Node
amdryzen_5_pro_5645Match-
amdryzen_5_pro_5645_firmwareRange<comboam4_v2_pi_1.2.0.a
Node
amdryzen_7_5700Match-
amdryzen_7_5700_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_5_5500Match-
amdryzen_5_5500_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_3_5100Match-
amdryzen_3_5100_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_7_5700gMatch-
amdryzen_7_5700g_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_7_5700geMatch-
amdryzen_7_5700ge_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_5_5600gMatch-
amdryzen_5_5600g_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_5_5600geMatch-
amdryzen_5_5600ge_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_3_5300gMatch-
amdryzen_3_5300g_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_3_5300geMatch-
amdryzen_3_5300ge_firmwareRange<comboam4v2_pi_1.2.0.a
Node
amdryzen_9_7950x3dMatch-
amdryzen_9_7950x3d_firmwareRange<comboam5_1.0.0.6
Node
amdryzen_9_7950xMatch-
amdryzen_9_7950x_firmwareRange<comboam5_1.0.0.6
Node
amdryzen_9_7900x3d_firmwareRange<comboam5_1.0.0.6
amdryzen_9_7900x3dMatch-
Node
amdryzen_9_7900x_firmwareRange<comboam5_1.0.0.6
amdryzen_9_7900xMatch-
Node
amdryzen_9_7900_firmwareRange<comboam5_1.0.0.6
amdryzen_9_7900Match-
Node
amdryzen_9_pro_7945_firmwareRange<comboam5_1.0.0.6
amdryzen_9_pro_7945Match-
Node
amdryzen_7_7800x3d_firmwareRange<comboam5_1.0.0.6
amdryzen_7_7800x3dMatch-
Node
amdryzen_7_7700x_firmwareRange<comboam5_1.0.0.6
amdryzen_7_7700xMatch-
Node
amdryzen_7_7700_firmwareRange<comboam5_1.0.0.6
amdryzen_7_7700Match-
Node
amdryzen_7_pro_7745_firmwareRange<comboam5_1.0.0.6
amdryzen_7_pro_7745Match-
Node
amdryzen_5_7600x_firmwareRange<comboam5_1.0.0.6
amdryzen_5_7600xMatch-
Node
amdryzen_5_7600_firmwareRange<comboam5_1.0.0.6
amdryzen_5_7600Match-
Node
amdryzen_5_pro_7645_firmwareRange<comboam5_1.0.0.6
amdryzen_5_pro_7645Match-
Node
amdryzen_5_7500f_firmwareRange<comboam5_1.0.0.6
amdryzen_5_7500fMatch-
Node
amdryzen_4700s_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_4700sMatch-
Node
amdryzen_5_4500_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_5_4500Match-
Node
amdryzen_3_4100_firmwareRange<comboam4v2_pi_1.2.0.a
amdryzen_3_4100Match-
Node
amdathlon_pro_300ge_firmwareRange<comboam4piv1_1.0.0.a
amdathlon_pro_300geMatch-
Node
amdathlon_gold_3150ge_firmwareRange<comboam4piv1_1.0.0.a
amdathlon_gold_3150geMatch-
Node
amdathlon_gold_pro_3150ge_firmwareRange<comboam4piv1_1.0.0.a
amdathlon_gold_pro_3150geMatch-
Node
amdathlon_gold_3150g_firmwareRange<comboam4piv1_1.0.0.a
amdathlon_gold_3150gMatch-
Node
amdathlon_gold_pro_3150g_firmwareRange<comboam4piv1_1.0.0.a
amdathlon_gold_pro_3150gMatch-
Node
amdathlon_pro_300ge_firmwareRange<comboam4v2_1.2.0.a
amdathlon_pro_300geMatch-
Node
amdathlon_gold_3150ge_firmwareRange<comboam4v2_1.2.0.a
amdathlon_gold_3150geMatch-
Node
amdathlon_gold_pro_3150ge_firmwareRange<comboam4v2_1.2.0.a
amdathlon_gold_pro_3150geMatch-
Node
amdathlon_gold_3150g_firmwareRange<comboam4v2_1.2.0.a
amdathlon_gold_3150gMatch-
Node
amdathlon_gold_pro_3150g_firmwareRange<comboam4v2_1.2.0.a
amdathlon_gold_pro_3150gMatch-
Node
amdathlon_silver_3050e_firmwareRange<picassopi-fp5_1.0.0.f
amdathlon_silver_3050eMatch-
Node
amdathlon_pro_3045b_firmwareRange<picassopi-fp5_1.0.0.f
amdathlon_pro_3045bMatch-
Node
amdathlon_silver_3050u_firmwareRange<picassopi-fp5_1.0.0.f
amdathlon_silver_3050uMatch-
Node
amdathlon_silver_3050c_firmwareRange<picassopi-fp5_1.0.0.f
amdathlon_silver_3050cMatch-
Node
amdathlon_pro_3145b_firmwareRange<picassopi-fp5_1.0.0.f
amdathlon_pro_3145bMatch-
Node
amdathlon_gold_3150u_firmwareRange<picassopi-fp5_1.0.0.f
amdathlon_gold_3150uMatch-
Node
amdathlon_gold_3150c_firmwareRange<picassopi-fp5_1.0.0.f
amdathlon_gold_3150cMatch-
Node
amdathlon_3015e_firmwareRange<pollockpi-ft5_1.0.0.5
amdathlon_3015eMatch-
Node
amdathlon_3015ce_firmwareRange<pollockpi-ft5_1.0.0.5
amdathlon_3015ceMatch-
Node
amdryzen_7_3780u_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_7_3780uMatch-
Node
amdryzen_7_3750h_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_7_3750hMatch-
Node
amdryzen_7_3700c_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_7_3700cMatch-
Node
amdryzen_7_3700u_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_7_3700uMatch-
Node
amdryzen_5_3580u_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_5_3580uMatch-
Node
amdryzen_5_3550h_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_5_3550hMatch-
Node
amdryzen_5_3500c_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_5_3500cMatch-
Node
amdryzen_5_3500u_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_5_3500uMatch-
Node
amdryzen_5_3450u_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_5_3450uMatch-
Node
amdryzen_3_3350u_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_3_3350uMatch-
Node
amdryzen_3_3300u_firmwareRange<picassopi-fp5_1.0.0.f
amdryzen_3_3300uMatch-
Node
amdryzen_9_4900h_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_9_4900hMatch-
Node
amdryzen_9_4900hs_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_9_4900hsMatch-
Node
amdryzen_7_4800h_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_7_4800hMatch-
Node
amdryzen_7_4800hs_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_7_4800hsMatch-
Node
amdryzen_7_4980u_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_7_4980uMatch-
Node
amdryzen_7_4800u_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_7_4800uMatch-
Node
amdryzen_7_4700u_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_7_4700uMatch-
Node
amdryzen_5_4600h_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_5_4600hMatch-
Node
amdryzen_5_4600hs_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_5_4600hsMatch-
Node
amdryzen_5_4680u_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_5_4680uMatch-
Node
amdryzen_5_4600u_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_5_4600uMatch-
Node
amdryzen_5_4500u_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_5_4500uMatch-
Node
amdryzen_3_4300u_firmwareRange<renoirpi-fp6_1.0.0.b
amdryzen_3_4300uMatch-
Node
amdryzen_7_5700u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_7_5700uMatch-
Node
amdryzen_5_5500u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_5_5500uMatch-
Node
amdryzen_3_5300u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_3_5300uMatch-
Node
amdryzen_9_5980hx_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_9_5980hxMatch-
Node
amdryzen_9_5980hs_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_9_5980hsMatch-
Node
amdryzen_9_5900hx_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_9_5900hxMatch-
Node
amdryzen_9_5900hs_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_9_5900hsMatch-
Node
amdryzen_7_5800h_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_7_5800hMatch-
Node
amdryzen_7_5800hs_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_7_5800hsMatch-
Node
amdryzen_7_5825u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_7_5825uMatch-
Node
amdryzen_7_5800u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_7_5800uMatch-
Node
amdryzen_5_5600h_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_5_5600hMatch-
Node
amdryzen_5_5600hs_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_5_5600hsMatch-
Node
amdryzen_5_5625u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_5_5625uMatch-
Node
amdryzen_5_5600u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_5_5600uMatch-
Node
amdryzen_5_5560u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_5_5560uMatch-
Node
amdryzen_3_5425u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_3_5425uMatch-
Node
amdryzen_3_5400u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_3_5400uMatch-
Node
amdryzen_3_5125c_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_3_5125cMatch-
Node
amdryzen_9_6980hx_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_9_6980hxMatch-
Node
amdryzen_9_6980hs_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_9_6980hsMatch-
Node
amdryzen_9_6900hx_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_9_6900hxMatch-
Node
amdryzen_9_6900hs_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_9_6900hsMatch-
Node
amdryzen_7_6800h_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_7_6800hMatch-
Node
amdryzen_7_6800hs_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_7_6800hsMatch-
Node
amdryzen_7_6800u_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_7_6800uMatch-
Node
amdryzen_5_6600h_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_5_6600hMatch-
Node
amdryzen_5_6600hs_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_5_6600hsMatch-
Node
amdryzen_5_6600u_firmwareRange<rembrandtpi-fp7_1.0.0.8
amdryzen_5_6600uMatch-
Node
amdryzen_5_7520u_firmwareRange<mendocinopi-ft6_1.0.0.5
amdryzen_5_7520uMatch-
Node
amdryzen_3_7320u_firmwareRange<mendocinopi-ft6_1.0.0.5
amdryzen_3_7320uMatch-
Node
amdryzen_7_pro_7730u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_7_pro_7730uMatch-
Node
amdryzen_5_pro_7530u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_5_pro_7530uMatch-
Node
amdryzen_3_pro_7330u_firmwareRange<cezannepi-fp6_1.0.0.e
amdryzen_3_pro_7330uMatch-
Related
prion
prion
Input validation
2023-08-08 18:15:00
amd
amd
SMM Memory Corruption Vulnerability
2023-08-08 00:00:00
cve
cve
CVE-2023-20555
2023-08-08 18:15:11
redhatcve
redhatcve
CVE-2023-20555
2023-09-28 07:24:53
cvelist
cvelist
CVE-2023-20555
2023-08-08 17:07:24
hp
hp
AMD Client UEFI Firmware August 2023 Security Update
2023-08-08 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2023-20555