HomeAmdCVE-2023-20571

CVE-2023-20571

HIGH
8.1CVSS
Published: 2023-11-14
Updated: 2024-11-21
AI Analysis

Description

A race condition in System Management Mode (SMM) code may allow an attacker using a compromised user space to leverage CVE-2018-8897 potentially resulting in privilege escalation.

CVSS Metrics

Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
network
Complexity
high
Privileges
none
User Action
none
Scope
unchanged
Confidentiality
high
Integrity
high
Availability
high
Weaknesses
CWE-362

Metadata

Primary Vendor
AMD
Published
11/14/2023
Last Modified
11/21/2024
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

amd : ryzen_3_5100_firmwareamd : ryzen_3_5300g_firmwareamd : ryzen_3_5300ge_firmwareamd : ryzen_5_5500_firmwareamd : ryzen_5_5600g_firmwareamd : ryzen_5_5600ge_firmwareamd : ryzen_7_5700_firmwareamd : ryzen_7_5700g_firmwareamd : ryzen_7_5700ge_firmwareamd : ryzen_5_7500f_firmwareamd : ryzen_5_7600_firmwareamd : ryzen_5_7600x_firmwareamd : ryzen_7_7700_firmwareamd : ryzen_7_7700x_firmwareamd : ryzen_7_7800x3d_firmwareamd : ryzen_9_7900_firmwareamd : ryzen_9_7900x_firmwareamd : ryzen_9_7900x3d_firmwareamd : ryzen_9_7950x_firmwareamd : ryzen_9_7950x3d_firmwareamd : ryzen_pro_3900_firmwareamd : ryzen_pro_7645_firmwareamd : ryzen_pro_7745_firmwareamd : ryzen_pro_7945_firmwareamd : ryzen_3_5125c_firmwareamd : ryzen_3_5400u_firmwareamd : ryzen_3_5425u_firmwareamd : ryzen_5_5500h_firmwareamd : ryzen_5_5560u_firmwareamd : ryzen_5_5600h_firmwareamd : ryzen_5_5600hs_firmwareamd : ryzen_5_5600u_firmwareamd : ryzen_5_5625u_firmwareamd : ryzen_7_5800h_firmwareamd : ryzen_7_5800hs_firmwareamd : ryzen_7_5800u_firmwareamd : ryzen_7_5825u_firmwareamd : ryzen_9_5900hs_firmwareamd : ryzen_9_5900hx_firmwareamd : ryzen_9_5980hs_firmwareamd : ryzen_9_5980hx_firmwareamd : ryzen_9_6980hx_firmwareamd : ryzen_9_6980hs_firmwareamd : ryzen_9_6900hx_firmwareamd : ryzen_9_6900hs_firmwareamd : ryzen_7_6800h_firmwareamd : ryzen_7_6800hs_firmwareamd : ryzen_7_6800u_firmwareamd : ryzen_5_6600h_firmwareamd : ryzen_5_6600hs_firmwareamd : ryzen_5_6600u_firmwareamd : ryzen_7_7735hs_firmwareamd : ryzen_7_7736u_firmwareamd : ryzen_7_7735u_firmwareamd : ryzen_5_7535hs_firmwareamd : ryzen_5_7535u_firmwareamd : ryzen_3_7335u_firmwareamd : ryzen_7_pro_7730u_firmwareamd : ryzen_9_pro_7940hs_firmwareamd : ryzen_9_pro_7940h_firmwareamd : ryzen_7_pro_7840hs_firmwareamd : ryzen_7_pro_7840h_firmwareamd : ryzen_7_pro_7840u_firmwareamd : ryzen_5_pro_7640hs_firmwareamd : ryzen_5_pro_7640h_firmwareamd : ryzen_5_pro_7640u_firmwareamd : ryzen_5_pro_7545u_firmwareamd : ryzen_5_pro_7540u_firmwareamd : ryzen_3_pro_7440u_firmwareamd : ryzen_5_pro_7530u_firmwareamd : ryzen_3_pro_7330u_firmwareamd : ryzen_7_pro_7730u_firmware

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2023-20571 | HIGH Severity | CVEDatabase.com | CVEDatabase.com