← voltar
CVE-2023-20514

CVE-2023-20514

CVSS 8.7 HIGHEPSS 0.1%CWE-233
Improper handling of parameters in the AMD Secure Processor (ASP) could allow a privileged attacker to pass an arbitrary memory value to functions in the trusted execution environment resulting in arbitrary code execution
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
Produtos afetados
AMD · AMD Radeon™ PRO V620AMD · AMD Radeon™ PROV710AMD · AMD Radeon™ PRO VIIAMD · AMD Radeon™ PRO W6000 Series Graphics ProductsAMD · AMD Radeon™ PRO W7000 Series Graphics ProductsAMD · AMD Radeon™ RX 6000 Series Graphics ProductsAMD · AMD Radeon™ RX 7000 Series Graphics ProductsAMD · AMD Radeon™ VII

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.amd.com/en/resources/product-security/bulletin/AMD-SB-6024.htmlhttps://www.amd.com/en/resources/product-security/bulletin/Emb-Auto.html