CVE-2023-20589 | Severity.io

Description

An attacker with specialized hardware and physical access to an impacted device may be able to perform a voltage fault injection attack resulting in compromise of the ASP secure boot potentially leading to arbitrary code execution.

Related CPE's

ryzen_5_pro_3400g_firmware

Vulnerable

ryzen_5_pro_3400g

ryzen_5_3400g_firmware

Vulnerable

ryzen_5_pro_3400ge_firmware

Vulnerable

ryzen_5_pro_3400ge

ryzen_5_pro_3350g_firmware

Vulnerable

ryzen_5_pro_3350g

ryzen_5_pro_3350ge_firmware

Vulnerable

ryzen_5_pro_3350ge

ryzen_3_pro_3200g_firmware

Vulnerable

ryzen_3_pro_3200g

ryzen_3_3200g_firmware

Vulnerable

ryzen_3_3200ge_firmware

Vulnerable

ryzen_3_pro_3200ge_firmware

Vulnerable

ryzen_3_pro_3200ge

ryzen_9_3950x_firmware

Vulnerable

ryzen_9_3900xt_firmware

Vulnerable

ryzen_9_3900x_firmware

Vulnerable

ryzen_9_3900_firmware

Vulnerable

ryzen_7_3800xt_firmware

Vulnerable

ryzen_7_3800x_firmware

Vulnerable

ryzen_7_3700x_firmware

Vulnerable

ryzen_5_3600xt_firmware

Vulnerable

ryzen_5_3600x_firmware

Vulnerable

ryzen_5_3600_firmware

Vulnerable

ryzen_5_3500x_firmware

Vulnerable

ryzen_5_3500_firmware

Vulnerable

ryzen_3_3300x_firmware

Vulnerable

ryzen_3_3100_firmware

Vulnerable

ryzen_threadripper_pro_3995wx_firmware

Vulnerable

ryzen_threadripper_pro_3995wx

ryzen_threadripper_pro_3975wx_firmware

Vulnerable

ryzen_threadripper_pro_3975wx

ryzen_threadripper_pro_3955wx_firmware

Vulnerable

ryzen_threadripper_pro_3955wx

ryzen_threadripper_pro_3945wx_firmware

Vulnerable

ryzen_threadripper_pro_3945wx

ryzen_threadripper_3990x_firmware

Vulnerable

ryzen_threadripper_3990x

ryzen_threadripper_3970x_firmware

Vulnerable

ryzen_threadripper_3970x

ryzen_threadripper_3960x_firmware

Vulnerable

ryzen_threadripper_3960x

Vulnerable

ryzen_5_4500_firmware

Vulnerable

ryzen_3_4100_firmware

Vulnerable

ryzen_7_4700g_firmware

Vulnerable

ryzen_7_4700ge_firmware

Vulnerable

ryzen_5_4600g_firmware

Vulnerable

ryzen_5_4600ge_firmware

Vulnerable

ryzen_3_4300g_firmware

Vulnerable

ryzen_3_4300ge_firmware

Vulnerable

ryzen_9_5950x_firmware

Vulnerable

ryzen_9_5900x_firmware

Vulnerable

ryzen_9_5900_firmware

Vulnerable

ryzen_9_pro_5945_firmware

Vulnerable

ryzen_9_pro_5945

ryzen_7_5800x3d_firmware

Vulnerable

ryzen_7_5800x3d

ryzen_7_5800x_firmware

Vulnerable

ryzen_7_5800_firmware

Vulnerable

ryzen_7_5700x_firmware

Vulnerable

ryzen_7_pro_5845_firmware

Vulnerable

ryzen_7_pro_5845

ryzen_5_5600x3d_firmware

Vulnerable

ryzen_5_5600x3d

ryzen_5_5600x_firmware

Vulnerable

ryzen_5_5600_firmware

Vulnerable

ryzen_5_pro_5645_firmware

Vulnerable

ryzen_5_pro_5645

ryzen_7_5700_firmware

Vulnerable

ryzen_5_5500_firmware

Vulnerable

ryzen_3_5100_firmware

Vulnerable

ryzen_7_5700g_firmware

Vulnerable

ryzen_7_5700ge_firmware

Vulnerable

ryzen_5_5600g_firmware

Vulnerable

ryzen_5_5600ge_firmware

Vulnerable

ryzen_3_5300g_firmware

Vulnerable

ryzen_3_5300ge_firmware

Vulnerable

ryzen_threadripper_pro_5995wx_firmware

Vulnerable

ryzen_threadripper_pro_5995wx

ryzen_threadripper_pro_5975wx_firmware

Vulnerable

ryzen_threadripper_pro_5975wx

ryzen_threadripper_pro_5965wx_firmware

Vulnerable

ryzen_threadripper_pro_5965wx

ryzen_threadripper_pro_5955wx_firmware

Vulnerable

ryzen_threadripper_pro_5955wx

ryzen_threadripper_pro_5945wx_firmware

Vulnerable

ryzen_threadripper_pro_5945wx

ryzen_threadripper_2990wx_firmware

Vulnerable

ryzen_threadripper_2990wx

ryzen_threadripper_2970wx_firmware

Vulnerable

ryzen_threadripper_2970wx

ryzen_threadripper_2950x_firmware

Vulnerable

ryzen_threadripper_2950x

ryzen_threadripper_2920x_firmware

Vulnerable

ryzen_threadripper_2920x

athlon_pro_300ge_firmware

Vulnerable

athlon_pro_300ge

athlon_gold_3150ge_firmware

Vulnerable

athlon_gold_3150ge

athlon_gold_pro_3150ge_firmware

Vulnerable

athlon_gold_pro_3150ge

athlon_gold_3150g_firmware

Vulnerable

athlon_gold_3150g

athlon_gold_pro_3150g_firmware

Vulnerable

athlon_gold_pro_3150g

athlon_silver_3050e_firmware

Vulnerable

athlon_silver_3050e

athlon_pro_3045b_firmware

Vulnerable

athlon_pro_3045b

athlon_silver_3050u_firmware

Vulnerable

athlon_silver_3050u

athlon_silver_3050c_firmware

Vulnerable

athlon_silver_3050c

athlon_pro_3145b_firmware

Vulnerable

athlon_pro_3145b

athlon_gold_3150u_firmware

Vulnerable

athlon_gold_3150u

athlon_gold_3150c_firmware

Vulnerable

athlon_gold_3150c

ryzen_7_5700u_firmware

Vulnerable

ryzen_5_5500u_firmware

Vulnerable

ryzen_3_5300u_firmware

Vulnerable

ryzen_9_5980hx_firmware

Vulnerable

ryzen_9_5980hs_firmware

Vulnerable

ryzen_9_5900hx_firmware

Vulnerable

ryzen_9_5900hs_firmware

Vulnerable

ryzen_7_5800h_firmware

Vulnerable

ryzen_7_5800hs_firmware

Vulnerable

ryzen_7_5825u_firmware

Vulnerable

ryzen_7_5800u_firmware

Vulnerable

ryzen_5_5600h_firmware

Vulnerable

ryzen_5_5600hs_firmware

Vulnerable

ryzen_5_5625u_firmware

Vulnerable

ryzen_5_5600u_firmware

Vulnerable

ryzen_5_5560u_firmware

Vulnerable

ryzen_3_5425u_firmware

Vulnerable

ryzen_3_5400u_firmware

Vulnerable

ryzen_3_5125c_firmware

Vulnerable

ryzen_9_6980hx_firmware

Vulnerable

ryzen_9_6980hs_firmware

Vulnerable

ryzen_9_6900hx_firmware

Vulnerable

ryzen_9_6900hs_firmware

Vulnerable

ryzen_7_6800h_firmware

Vulnerable

ryzen_7_6800hs_firmware

Vulnerable

ryzen_7_6800u_firmware

Vulnerable

ryzen_5_6600h_firmware

Vulnerable

ryzen_5_6600hs_firmware

Vulnerable

ryzen_5_6600u_firmware

Vulnerable

ryzen_5_7520u_firmware

Vulnerable

ryzen_3_7320u_firmware

Vulnerable

ryzen_7_pro_7730u_firmware

Vulnerable

ryzen_7_pro_7730u

ryzen_5_pro_7530u_firmware

Vulnerable

ryzen_5_pro_7530u

ryzen_3_pro_7330u_firmware

Vulnerable

ryzen_3_pro_7330u

ryzen_7_7735hs_firmware

Vulnerable

ryzen_7_7736u_firmware

Vulnerable

ryzen_7_7735u_firmware

Vulnerable

ryzen_5_7535hs_firmware

Vulnerable

ryzen_5_7535u_firmware

Vulnerable

ryzen_3_7335u_firmware

Vulnerable

References

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4005

Vendor Advisory

https://www.amd.com/en/corporate/product-security/bulletin/AMD-SB-4005

Vendor Advisory

Weaknesses

[email protected]

Primary

NVD-CWE-noinfo

CVSS impact metrics

CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

6.8 · Medium

Information

Source identifier

[email protected]

Vulnerability status

Modified

Published

2023-08-08T16:15:11.717Z

2 years ago

Last modified

2024-11-21T06:41:10.663Z

1 year ago