Lucene search

Redhat.comRH:CVE-2023-20587

HistoryFeb 15, 2024 - 2:22 a.m.

CVE-2023-20587

2024-02-1502:22:20

redhat.com

access.redhat.com

amd

hardware

access control

system management mode

vulnerability

local attacker

arbitrary code

7.7 High

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

A vulnerability was found in AMD hardware due to improper access control in System Management Mode (SMM). This issue could allow a local unauthenticated attacker to execute arbitrary code.

References

bugzilla.redhat.com/show_bug.cgi?id=2263402

nvd.nist.gov/vuln/detail/CVE-2023-20587

www.amd.com/en/resources/product-security/bulletin/amd-sb-7009.html

www.cve.org/CVERecord?id=CVE-2023-20587