Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2023-20559
HistoryApr 02, 2023 - 9:15 p.m.

CVE-2023-20559

2023-04-0221:15:08
[email protected]
web.nvd.nist.gov
1
insufficient control flow
amdcpmgpioinitsmm
privileged attacker
smm handler
escalation of privileges

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.3%

JSON

Insufficient control flow management in AmdCpmGpioInitSmm may allow a privileged attacker to tamper with the SMM handler potentially leading to escalation of privileges.

Affected configurations

NVD
Node
amdryzen_7_5700g_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_7_5700gMatch-
Node
amdryzen_7_5700ge_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_7_5700geMatch-
Node
amdryzen_5_5600g_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_5_5600gMatch-
Node
amdryzen_5_5600ge_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_5_5600geMatch-
Node
amdryzen_3_5300g_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_3_5300gMatch-
Node
amdryzen_3_5300ge_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_3_5300geMatch-
Node
amdryzen_9_5980hx_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_9_5980hxMatch-
Node
amdryzen_9_5980hs_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_9_5980hsMatch-
Node
amdryzen_7_5825u_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_7_5825uMatch-
Node
amdryzen_9_5900hx_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_9_5900hxMatch-
Node
amdryzen_9_5900hs_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_9_5900hsMatch-
Node
amdryzen_7_5825c_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_7_5825cMatch-
Node
amdryzen_7_5800h_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_7_5800hMatch-
Node
amdryzen_5_5625u_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_5_5625uMatch-
Node
amdryzen_7_5800hs_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_7_5800hsMatch-
Node
amdryzen_5_5625c_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_5_5625cMatch-
Node
amdryzen_5_5600h_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_5_5600hMatch-
Node
amdryzen_5_5600hs_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_5_5600hsMatch-
Node
amdryzen_7_5800u_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_7_5800uMatch-
Node
amdryzen_5_5600u_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_5_5600uMatch-
Node
amdryzen_5_5560u_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_5_5560uMatch-
Node
amdryzen_3_5425u_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_3_5425uMatch-
Node
amdryzen_3_5425c_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_3_5425cMatch-
Node
amdryzen_3_5400u_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_3_5400uMatch-
Node
amdryzen_3_5125c_firmwareRange<cezannepi-fp6_1.0.0.9
AND
amdryzen_3_5125cMatch-
Node
amdathlon_silver_3050u_firmwareMatch-
AND
amdathlon_silver_3050uMatch-
Node
amdathlon_gold_3150u_firmwareMatch-
AND
amdathlon_gold_3150uMatch-
Node
amdryzen_3_3200u_firmwareMatch-
AND
amdryzen_3_3200uMatch-
Node
amdryzen_3_3250u_firmwareMatch-
AND
amdryzen_3_3250uMatch-
Node
amdryzen_3_3300u_firmwareMatch-
AND
amdryzen_3_3300uMatch-
Node
amdryzen_3_3350u_firmwareMatch-
AND
amdryzen_3_3350uMatch-
Node
amdryzen_3_3450u_firmwareMatch-
AND
amdryzen_3_3450uMatch-
Node
amdryzen_3_3500u_firmwareMatch-
AND
amdryzen_3_3500uMatch-
Node
amdryzen_3_3500c_firmwareMatch-
AND
amdryzen_3_3500cMatch-
Node
amdryzen_3_3550h_firmwareMatch-
AND
amdryzen_3_3550hMatch-
Node
amdryzen_3_3580u_firmwareMatch-
AND
amdryzen_3_3580uMatch-
Node
amdryzen_3_3700u_firmwareMatch-
AND
amdryzen_3_3700uMatch-
Node
amdryzen_3_3700c_firmwareMatch-
AND
amdryzen_3_3700cMatch-
Node
amdryzen_3_3750h_firmwareMatch-
AND
amdryzen_3_3750hMatch-
Node
amdryzen_3_3780u_firmwareMatch-
AND
amdryzen_3_3780uMatch-
Node
amdryzen_3_2200u_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_3_2200uMatch-
Node
amdryzen_3_2300u_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_3_2300uMatch-
Node
amdryzen_5_2500u_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_5_2500uMatch-
Node
amdryzen_5_2600_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_5_2600Match-
Node
amdryzen_5_2600h_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_5_2600hMatch-
Node
amdryzen_5_2600x_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_5_2600xMatch-
Node
amdryzen_5_2700_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_5_2700Match-
Node
amdryzen_5_2700x_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_5_2700xMatch-
Node
amdryzen_7_2700_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_7_2700Match-
Node
amdryzen_7_2700u_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_7_2700uMatch-
Node
amdryzen_7_2700x_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_7_2700xMatch-
Node
amdryzen_7_2800h_firmwareRange<comboam4v2_pi_1.2.0.6c
AND
amdryzen_7_2800hMatch-
Node
amdryzen_3_3300x_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_3_3300xMatch-
Node
amdryzen_5_3500_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_5_3500Match-
Node
amdryzen_5_3500x_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_5_3500xMatch-
Node
amdryzen_5_3600_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_5_3600Match-
Node
amdryzen_5_3600x_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_5_3600xMatch-
Node
amdryzen_5_3600xt_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_5_3600xtMatch-
Node
amdryzen_7_3700x_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_7_3700xMatch-
Node
amdryzen_7_3800x_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_7_3800xMatch-
Node
amdryzen_7_3800xt_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_7_3800xtMatch-
Node
amdryzen_9_3900_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_9_3900Match-
Node
amdryzen_9_3900x_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_9_3900xMatch-
Node
amdryzen_9_3900xt_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_9_3900xtMatch-
Node
amdryzen_9_3950x_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_9_3950xMatch-
Node
amdryzen_9_pro_3900_firmwareRange<comboam4_v2_pi_1.2.0.6c
AND
amdryzen_9_pro_3900Match-
Node
amdryzen_threadripper_2990wx_firmwareRange<summitpi-sp3r2_1.1.0.5
AND
amdryzen_threadripper_2990wxMatch-
Node
amdryzen_threadripper_2970wx_firmwareRange<summitpi-sp3r2_1.1.0.5
AND
amdryzen_threadripper_2970wxMatch-
Node
amdryzen_threadripper_2950x_firmwareRange<summitpi-sp3r2_1.1.0.5
AND
amdryzen_threadripper_2950xMatch-
Node
amdryzen_threadripper_2920x_firmwareRange<summitpi-sp3r2_1.1.0.5
AND
amdryzen_threadripper_2920xMatch-
Node
amdryzen_threadripper_3990x_firmwareRange<castlepeakpi-sp3r3_1.0.0.6
AND
amdryzen_threadripper_3990xMatch-
Node
amdryzen_threadripper_3970x_firmwareRange<castlepeakpi-sp3r3_1.0.0.6
AND
amdryzen_threadripper_3970xMatch-
Node
amdryzen_threadripper_3960x_firmwareRange<castlepeakpi-sp3r3_1.0.0.6
AND
amdryzen_threadripper_3960xMatch-
Node
amdryzen_threadripper_pro_3795wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_3795wxMatch-
Node
amdryzen_threadripper_pro_3945wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_3945wxMatch-
Node
amdryzen_threadripper_pro_3955wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_3955wxMatch-
Node
amdryzen_threadripper_pro_3975wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_3975wxMatch-
Node
amdryzen_threadripper_pro_3995wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_3995wxMatch-
Node
amdryzen_threadripper_pro_5945wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_5945wxMatch-
Node
amdryzen_threadripper_pro_5955wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_5955wxMatch-
Node
amdryzen_threadripper_pro_5965wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_5965wxMatch-
Node
amdryzen_threadripper_pro_5975wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_5975wxMatch-
Node
amdryzen_threadripper_pro_5995wx_firmwareRange<castlepeakwspi-swrx8_1.0.0.9
AND
amdryzen_threadripper_pro_5995wxMatch-
Node
amdryzen_7_4700g_firmwareRange<renoirpi-fp6_1.0.0.7
AND
amdryzen_7_4700gMatch-
Node
amdryzen_7_4700ge_firmwareRange<renoirpi-fp6_1.0.0.7
AND
amdryzen_7_4700geMatch-
Node
amdryzen_5_4600g_firmwareRange<renoirpi-fp6_1.0.0.7
AND
amdryzen_5_4600gMatch-
Node
amdryzen_5_4600ge_firmwareRange<renoirpi-fp6_1.0.0.7
AND
amdryzen_5_4600geMatch-
Node
amdryzen_3_4300g_firmwareRange<renoirpi-fp6_1.0.0.7
AND
amdryzen_3_4300gMatch-
Node
amdryzen_3_4300ge_firmwareRange<renoirpi-fp6_1.0.0.7
AND
amdryzen_3_4300geMatch-

Related

cve 1
prion 1
cvelist 1
amd 1
cve
cve
CVE-2023-20559
2023-04-02 21:15:08
prion
prion
Design/Logic Flaw
2023-04-02 21:15:00
cvelist
cvelist
CVE-2023-20559
2023-03-23 18:49:41
amd
amd
AMD Client Vulnerabilities – May 2022
2022-05-10 00:00:00

8.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

8.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.3%

JSON
Related for NVD:CVE-2023-20559
cve1prion1cvelist1amd1