CVE-2023-20569 | Severity.io

Description

A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.

Related CPE's

o

fedoraproject

fedora

2

o

debian

debian_linux

3

ryzen_9_5950x_firmware

Vulnerable

ryzen_9_5900x_firmware

Vulnerable

ryzen_9_5900_firmware

Vulnerable

ryzen_9_pro_5945

ryzen_9_pro_5945_firmware

Vulnerable

ryzen_7_5800x3d

ryzen_7_5800x3d_firmware

Vulnerable

ryzen_7_5800x_firmware

Vulnerable

ryzen_7_5800_firmware

Vulnerable

ryzen_7_5700x_firmware

Vulnerable

ryzen_7_pro_5845_firmware

Vulnerable

ryzen_7_pro_5845

ryzen_5_5600x3d_firmware

Vulnerable

ryzen_5_5600x3d

ryzen_5_5600x_firmware

Vulnerable

ryzen_5_5600_firmware

Vulnerable

ryzen_5_pro_5645_firmware

Vulnerable

ryzen_5_pro_5645

ryzen_7_5700_firmware

Vulnerable

ryzen_5_5500_firmware

Vulnerable

ryzen_3_5100_firmware

Vulnerable

ryzen_7_5700g_firmware

Vulnerable

ryzen_7_5700ge_firmware

Vulnerable

ryzen_5_5600g_firmware

Vulnerable

ryzen_5_5600ge_firmware

Vulnerable

ryzen_3_5300g_firmware

Vulnerable

ryzen_3_5300ge_firmware

Vulnerable

ryzen_9_7950x3d_firmware

Vulnerable

ryzen_9_7950x3d

ryzen_9_7950x_firmware

Vulnerable

ryzen_9_7900x3d_firmware

Vulnerable

ryzen_9_7900x3d

ryzen_9_7900x_firmware

Vulnerable

ryzen_9_7900_firmware

Vulnerable

ryzen_9_pro_7945_firmware

Vulnerable

ryzen_9_pro_7945

ryzen_7_7800x3d_firmware

Vulnerable

ryzen_7_7800x3d

ryzen_7_7700x_firmware

Vulnerable

ryzen_7_7700_firmware

Vulnerable

ryzen_7_pro_7745_firmware

Vulnerable

ryzen_7_pro_7745

ryzen_5_7600x_firmware

Vulnerable

ryzen_5_7600_firmware

Vulnerable

ryzen_5_pro_7645_firmware

Vulnerable

ryzen_5_pro_7645

ryzen_5_7500f_firmware

Vulnerable

ryzen_threadripper_pro_5995wx_firmware

Vulnerable

ryzen_threadripper_pro_5995wx

ryzen_threadripper_pro_5975wx_firmware

Vulnerable

ryzen_threadripper_pro_5975wx

ryzen_threadripper_pro_5965wx_firmware

Vulnerable

ryzen_threadripper_pro_5965wx

ryzen_threadripper_pro_5955wx_firmware

Vulnerable

ryzen_threadripper_pro_5955wx

ryzen_threadripper_pro_5945wx_firmware

Vulnerable

ryzen_threadripper_pro_5945wx

ryzen_7_5700u_firmware

Vulnerable

ryzen_5_5500u_firmware

Vulnerable

ryzen_3_5300u_firmware

Vulnerable

ryzen_9_5980hx_firmware

Vulnerable

ryzen_9_5980hs_firmware

Vulnerable

ryzen_9_5900hx_firmware

Vulnerable

ryzen_9_5900hs_firmware

Vulnerable

ryzen_7_5800h_firmware

Vulnerable

ryzen_7_5800hs_firmware

Vulnerable

ryzen_7_5825u_firmware

Vulnerable

ryzen_7_5800u_firmware

Vulnerable

ryzen_5_5600h_firmware

Vulnerable

ryzen_5_5600hs_firmware

Vulnerable

ryzen_5_5625u_firmware

Vulnerable

ryzen_5_5600u_firmware

Vulnerable

ryzen_5_5560u_firmware

Vulnerable

ryzen_3_5425u_firmware

Vulnerable

ryzen_3_5400u_firmware

Vulnerable

ryzen_3_5125c_firmware

Vulnerable

ryzen_9_6980hx_firmware

Vulnerable

ryzen_9_6980hs_firmware

Vulnerable

ryzen_9_6900hx_firmware

Vulnerable

ryzen_9_6900hs_firmware

Vulnerable

ryzen_7_6800h_firmware

Vulnerable

ryzen_7_6800hs_firmware

Vulnerable

ryzen_7_6800u_firmware

Vulnerable

ryzen_5_6600h_firmware

Vulnerable

ryzen_5_6600hs_firmware

Vulnerable

ryzen_5_6600u_firmware

Vulnerable

ryzen_7_7735hs_firmware

Vulnerable

ryzen_7_7736u_firmware

Vulnerable

ryzen_7_7735u_firmware

Vulnerable

ryzen_5_7535hs_firmware

Vulnerable

ryzen_5_7535u_firmware

Vulnerable

ryzen_3_7335u_firmware

Vulnerable

ryzen_7_pro_7730u_firmware

Vulnerable

ryzen_7_pro_7730u

ryzen_5_pro_7530u_firmware

Vulnerable

ryzen_5_pro_7530u

ryzen_3_pro_7330u_firmware

Vulnerable

ryzen_3_pro_7330u

ryzen_9_pro_7640hs_firmware

Vulnerable

ryzen_9_pro_7640hs

ryzen_9_7940h_firmware

Vulnerable

ryzen_7_pro_7840hs_firmware

Vulnerable

ryzen_7_pro_7840hs

ryzen_7_7840h_firmware

Vulnerable

ryzen_7_7840u_firmware

Vulnerable

ryzen_5_pro_7640hs_firmware

Vulnerable

ryzen_5_pro_7640hs

ryzen_5_7640h_firmware

Vulnerable

ryzen_5_7640u_firmware

Vulnerable

ryzen_5_7540u_firmware

Vulnerable

ryzen_3_7440u_firmware

Vulnerable

ryzen_9_7945hx3d_firmware

Vulnerable

ryzen_9_7945hx3d

ryzen_9_7945hx_firmware

Vulnerable

ryzen_9_7845hx_firmware

Vulnerable

ryzen_7_7745hx_firmware

Vulnerable

ryzen_5_7645hx_firmware

Vulnerable

epyc_7773x_firmware

Vulnerable

epyc_7763_firmware

Vulnerable

epyc_7713_firmware

Vulnerable

epyc_7713p_firmware

Vulnerable

epyc_7663_firmware

Vulnerable

epyc_7643_firmware

Vulnerable

epyc_7573x_firmware

Vulnerable

epyc_75f3_firmware

Vulnerable

epyc_7543_firmware

Vulnerable

epyc_7543p_firmware

Vulnerable

epyc_7513_firmware

Vulnerable

epyc_7453_firmware

Vulnerable

epyc_7473x_firmware

Vulnerable

epyc_74f3_firmware

Vulnerable

epyc_7443_firmware

Vulnerable

epyc_7443p_firmware

Vulnerable

epyc_7413_firmware

Vulnerable

epyc_7373x_firmware

Vulnerable

epyc_73f3_firmware

Vulnerable

epyc_7343_firmware

Vulnerable

epyc_7313_firmware

Vulnerable

epyc_7313p_firmware

Vulnerable

epyc_72f3_firmware

Vulnerable

epyc_9124_firmware

Vulnerable

epyc_9224_firmware

Vulnerable

epyc_9254_firmware

Vulnerable

epyc_9334_firmware

Vulnerable

epyc_9354_firmware

Vulnerable

epyc_9354p_firmware

Vulnerable

epyc_9174f_firmware

Vulnerable

epyc_9184x_firmware

Vulnerable

epyc_9274f_firmware

Vulnerable

epyc_9374f_firmware

Vulnerable

epyc_9384x_firmware

Vulnerable

epyc_9474f_firmware

Vulnerable

epyc_9454_firmware

Vulnerable

epyc_9454p_firmware

Vulnerable

epyc_9534_firmware

Vulnerable

epyc_9554_firmware

Vulnerable

epyc_9554p_firmware

Vulnerable

epyc_9634_firmware

Vulnerable

epyc_9654_firmware

Vulnerable

epyc_9654p_firmware

Vulnerable

epyc_9684x_firmware

Vulnerable

epyc_9734_firmware

Vulnerable

epyc_9754s_firmware

Vulnerable

epyc_9754_firmware

Vulnerable

windows_10_1507

Vulnerable

windows_10_1607

Vulnerable

windows_10_1809

Vulnerable

windows_10_21h2

Vulnerable

windows_10_22h2

Vulnerable

windows_11_21h2

Vulnerable

windows_11_22h2

Vulnerable

o

microsoft

windows_server_2008

2

o

microsoft

windows_server_2012

2

windows_server_2016

Vulnerable

windows_server_2019

Vulnerable

windows_server_2022

Vulnerable

References

http://www.openwall.com/lists/oss-security/2023/08/08/4

Mailing List

http://xenbits.xen.org/xsa/advisory-434.html

Third Party Advisory

https://comsec.ethz.ch/research/microarch/inception/

ExploitThird Party Advisory

https://lists.debian.org/debian-lts-announce/2023/08/msg00013.html

Mailing List

https://lists.fedoraproject.org/archives/list/[email protected]/message/HKKYIK2EASDNUV4I7EFJKNBVO3KCKGRR/

Third Party Advisory

https://lists.fedoraproject.org/archives/list/[email protected]/message/L4E4TZNMLYL2KETY23IPA43QXFAVJ46V/

Mailing List

https://lists.fedoraproject.org/archives/list/[email protected]/message/PKK3IA63LSKM4EC3TN4UM6DDEIOWEQIG/

Mailing List

https://lists.fedoraproject.org/archives/list/[email protected]/message/T7WO5JM74YJSYAE5RBV4DC6A4YLEKWLF/

Mailing ListThird Party Advisory

https://security.netapp.com/advisory/ntap-20240605-0006/

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-7005

Vendor Advisory

https://www.debian.org/security/2023/dsa-5475

Third Party Advisory

Weaknesses

[email protected]

Primary

CWE-203

CVSS impact metrics

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N

4.7 · Medium

CVSS V3.1
CVSS V3.0
CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-08-08T18:15:11.530

11 months ago

Last modified

2024-06-10T17:16:10.570

1 month ago