Lucene search
HistoryAug 15, 2023 - 10:15 p.m.
CVE-2023-20564
insufficient validation
amd ryzen master
arbitrary kernel execution
memory reads/writes
confidentiality loss
6.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
Insufficient validation in the IOCTL (Input Output Control) input buffer in AMD Ryzen™ Master may permit a privileged attacker to perform memory reads/writes potentially leading to a loss of confidentiality or arbitrary kernel execution.
Affected configurations
Node
amdryzen_masterRange<2.11.2.2659
ORamdryzen_master_monitoring_sdkRange<august_2023
microsoftwindows_10Match-
ORmicrosoftwindows_11Match-
Related
cve
cve
CVE-2023-20564
2023-08-15 22:15:11
redhatcve
redhatcve
CVE-2023-20564
2023-08-08 17:51:14
cvelist
cvelist
CVE-2023-20564
2023-08-15 21:07:49
prion
prion
Input validation
2023-08-15 22:15:00
hp
hp
AMD Ryzen Master™ SDK August 2023 Security Update
2023-11-20 00:00:00
amd
amd
AMD Ryzen™ Master Security Bulletin
2023-08-08 00:00:00
6.7 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
0.0004 Low
EPSS
Percentile
5.1%
Related for NVD:CVE-2023-20564