← back
CVE-2023-20508

CVE-2023-20508

CVSS 5 MEDIUMEPSS 0.1%CWE-1284
Improper access control in the ASP could allow a privileged attacker to perform an out-of-bounds write to a memory location not controlled by the attacker, potentially leading to loss of confidentiality, integrity, or availability.
CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L
Affected products
AMD · AMD Athlon™ 3000 Series Desktop Processors with Radeon™ GraphicsAMD · AMD Athlon™ 3000 Series Mobile Processors with Radeon™ GraphicsAMD · AMD Instinct™ MI300AAMD · AMD Instinct™ MI300XAMD · AMD Radeon™ Instinct™ MI25AMD · AMD Radeon™ PRO V520AMD · AMD Radeon™ PRO V620AMD · AMD Radeon™ PRO V710AMD · AMD Radeon™ PRO W6000 Series Graphics ProductsAMD · AMD Radeon™ RX 6000 Series Graphics ProductsAMD · AMD Ryzen™ 3000 Series Mobile Processor with Radeon™ GraphicsAMD · AMD Ryzen™ 4000 Series Desktop Processor with Radeon™ GraphicsAMD · AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 5000 Series Desktop ProcessorsAMD · AMD Ryzen™ 5000 Series Desktop Processor with Radeon™ GraphicsAMD · AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 5000 Series Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 6000 Series Processor with Radeon™ GraphicsAMD · AMD Ryzen™ 7000 Series Desktop ProcessorsAMD · AMD Ryzen™ 7020 Series Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 7030 Series Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 7035 Series Processor with Radeon™ GraphicsAMD · AMD Ryzen™ 7040 Series Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 7045 Series Mobile ProcessorsAMD · AMD Ryzen™ 8000 Series Processor with Radeon™ Graphics

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.amd.com/en/resources/product-security/bulletin/amd-sb-6008.html