← voltar
CVE-2023-20579

CVE-2023-20579

CVSS 4.4 MEDIUMEPSS 0.2%CWE-284
Improper Access Control in the AMD SPI protection feature may allow a user with Ring0 (kernel mode) privileged access to bypass protections potentially resulting in loss of integrity and availability.
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Produtos afetados
AMD · AMD Ryzen™ 3000 Series Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 4000 Series Desktop Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 4000 Series Mobile Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 5000 Series Desktop Processor with Radeon™ GraphicsAMD · AMD Ryzen™ 5000 Series Mobile Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 5000 Series Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 6000 Series Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 7000 Series Desktop ProcessorAMD · AMD Ryzen™ 7020 Series Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 7035 Series Mobile Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 7040 Series Mobile Processors with Radeon™ GraphicsAMD · AMD Ryzen™ 7045 Series Mobile ProcessorsAMD · AMD Ryzen™ Embedded V2000AMD · AMD Ryzen™ Embedded V3000

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7009