CVE-2023-20594
Published: Sep 20, 2023
Modified: Jun 27, 2025
Description
Improper initialization of variables in the DXE driver may allow a privileged user to leak sensitive information via local access.
| Vendor | Product | Versions |
|---|---|---|
AMD | Ryzen™ 3000 Series Desktop Processors “Matisse” | affected various |
AMD | Ryzen™ 5000 Series Desktop Processors “Vermeer” | affected various |
AMD | Ryzen™ 5000 Series Desktop Processor with Radeon™ Graphics “Cezanne” | affected various |
AMD | Ryzen™ 4000 Series Desktop Processors with Radeon™ Graphics “Renoir” AM4 | affected various |
AMD | Ryzen™ Threadripper™ 3000 Series Processors “Castle Peak” HEDT | affected various |
AMD | Ryzen™ Threadripper™ PRO Processors “Castle Peak” WS SP3 | affected various |
AMD | Ryzen™ Threadripper™ PRO 3000WX Series Processors “Chagall” WS SP3 | affected various |
AMD | Ryzen™ 4000 Series Mobile Processors with Radeon™ Graphics “Renoir” FP6 | affected various |
AMD | Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Lucienne” | affected various |
AMD | Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics “Cezanne” | affected various |
AMD | Ryzen™ 6000 Series Mobile Processors with Radeon™ Graphics "Rembrandt" | affected various |
AMD | Ryzen™ 7035 Series Mobile Processors with Radeon™ Graphics "Rembrandt-R" | affected various |
AMD | Ryzen™ 5000 Series Mobile Processors with Radeon™ Graphics "Barcelo" | affected various |
AMD | Ryzen™ 7030 Series Mobile Processors with Radeon™ Graphics “Barcelo-R” | affected various |
AMD | 3rd Gen AMD EPYC™ Processors | affected various |
AMD | AMD Ryzen™ Embedded 7000 | unaffected EmbeddedAM5PI 1.0.0.1 |
AMD | AMD Ryzen™ Embedded V3000 | unaffected Embedded-PI_FP7r2 1.0.0.B |
Weaknesses (CWE)
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now