VYPR
Unrated severityNVD Advisory· Published Mar 23, 2023· Updated Feb 25, 2025

CVE-2023-20559

CVE-2023-20559

Description

Insufficient control flow management in AmdCpmGpioInitSmm may allow a privileged attacker to tamper with the SMM handler potentially leading to escalation of privileges.

Affected products

8
  • AMD/2nd Gen AMD Ryzen™ Threadripper™ Processorv5
    Range: Various
  • AMD/3rd Gen AMD Ryzen™ Threadripper™ Processorsv5
    Range: various
  • AMD/Ryzen™ 2000 Seriesv5
    Range: various
  • AMD/Ryzen™ 3000 Seriesv5
    Range: various
  • AMD/Ryzen™ 4000 Seriesv5
    Range: various
  • AMD/Ryzen™ 5000 Seriesv5
    Range: various
  • AMD/Ryzen™ Threadripper™ PRO Processorv5
    Range: various

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.