CVE-2023-20555
Published: Aug 8, 2023
Modified: Oct 24, 2024
Description
Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer potentially leading to arbitrary code execution in SMM.
| Vendor | Product | Versions |
|---|---|---|
AMD | Ryzen™ 3000 Series Desktop Processors “Matisse” AM4 | affected various |
AMD | Ryzen™ 5000 Series Desktop Processors “Vermeer” AM4 | affected various |
AMD | Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics “Cezanne” AM4 | affected various |
AMD | Ryzen™ 7000 Series Processors “Raphael” | affected various |
AMD | Athlon™ 3000 Series Desktop Processors with Radeon™ Graphics “Picasso” | affected various |
AMD | Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics “Renoir” FP5 | affected various |
AMD | Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Dali”/”Dali” FP5 | affected various |
AMD | Athlon™ 3000 Series Mobile Processors with Radeon™ Graphics “Pollock” | affected various |
AMD | Ryzen™ 3000 Series Mobile Processors with Radeon™ Graphics “Picasso” | affected various |
AMD | Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics “Renoir” FP6 | affected various |
AMD | Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne” | affected various |
AMD | Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Cezanne” | affected various |
AMD | Ryzen™ 6000 Series Mobile Processors "Rembrandt" | affected various |
AMD | Ryzen™ 7030 Series Mobile Processors “Barcelo” | affected various |
AMD | Ryzen™ 7020 Series Mobile Processors “Mendocino” | affected various |
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now