Skip to main content

Epyc 7232P Firmware CVE-2023-20533

HIGH
2023-11-14 psirt@amd.com
Information Disclosure Epyc 7232P Firmware Epyc 7252 Firmware Epyc 7262 Firmware Epyc 7272 Firmware Epyc 7282 Firmware Epyc 7302 Firmware Epyc 7302P Firmware Epyc 7352 Firmware Epyc 7402 Firmware Epyc 7402P Firmware Epyc 7452 Firmware Epyc 7502 Firmware Epyc 7502P Firmware Epyc 7532 Firmware Epyc 7542 Firmware Epyc 7552 Firmware Epyc 7642 Firmware Epyc 7662 Firmware Epyc 7702 Firmware Epyc 7702P Firmware Epyc 7742 Firmware Epyc 7F32 Firmware Epyc 7F52 Firmware Epyc 7F72 Firmware Epyc 7H12 Firmware Epyc 7763 Firmware Epyc 7713P Firmware Epyc 7713 Firmware Epyc 7663P Firmware Epyc 7663 Firmware Epyc 7643P Firmware Epyc 7773X Firmware Epyc 7643 Firmware Epyc 7573X Firmware Epyc 75F3 Firmware Epyc 7543P Firmware Epyc 7543 Firmware Epyc 7513 Firmware Epyc 7473X Firmware Epyc 7453 Firmware Epyc 74F3 Firmware Epyc 7443P Firmware Epyc 7443 Firmware Epyc 7413 Firmware Epyc 7373X Firmware Epyc 73F3 Firmware Epyc 7343 Firmware Epyc 7313P Firmware Epyc 7313 Firmware Epyc 7303P Firmware Epyc 7303 Firmware Epyc 72F3 Firmware Epyc 7203P Firmware Epyc 7203 Firmware Ryzen 9 3950X Firmware Ryzen 9 3900Xt Firmware Ryzen 9 3900X Firmware Ryzen 9 3900 Firmware Ryzen 7 3800Xt Firmware Ryzen 7 3800X Firmware Ryzen 7 3700X Firmware Ryzen 5 3600Xt Firmware Ryzen 5 3600X Firmware Ryzen 5 3600 Firmware Ryzen 5 3500X Firmware Ryzen 5 3500 Firmware Ryzen 3 3300X Firmware Ryzen 3 3100 Firmware Ryzen 9 5950X Firmware Ryzen 9 5900X Firmware Ryzen 9 5900 Firmware Ryzen 7 5800X3D Firmware Ryzen 7 5800X Firmware Ryzen 7 5800 Firmware Ryzen 7 5700X Firmware Ryzen 5 5600X Firmware Ryzen 5 5600 Firmware Ryzen 5 5500 Firmware Ryzen Threadripper Pro 3945Wx Firmware Ryzen Threadripper Pro 3955Wx Firmware Ryzen Threadripper Pro 3975Wx Firmware Ryzen Threadripper Pro 3995Wx Firmware Ryzen Threadripper 3960X Firmware Ryzen Threadripper 3970X Firmware Ryzen Threadripper 3990X Firmware
7.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High

Lifecycle Timeline

1
CVE Published
Nov 14, 2023 - 19:15 nvd
HIGH 7.5

DescriptionNVD

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.

AnalysisAI

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Technical ContextAI

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service. Affected products include: Amd Epyc 7232P Firmware, Amd Epyc 7252 Firmware, Amd Epyc 7262 Firmware, Amd Epyc 7272 Firmware, Amd Epyc 7282 Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

CVE-2023-20520 CRITICAL
9.8 May 09

Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing a stack-b

CVE-2023-20593 MEDIUM POC
5.5 Jul 24

An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access s

CVE-2021-26340 HIGH
8.4 Dec 10

A malicious hypervisor in conjunction with an unprivileged attacker process inside an SEV/SEV-ES guest VM may fail to fl

CVE-2021-26335 HIGH
7.8 Nov 16

Improper input and range checking in the AMD Secure Processor (ASP) boot loader image header may allow an attacker to us

CVE-2021-26331 HIGH
7.8 Nov 16

AMD System Management Unit (SMU) contains a potential issue where a malicious user may be able to manipulate mailbox ent

CVE-2021-26323 HIGH
7.8 Nov 16

Failure to validate SEV Commands while SNP is active may result in a potential impact to memory integrity. Rated high se

CVE-2021-26326 HIGH
7.8 Nov 16

Failure to validate VM_HSAVE_PA during SNP_INIT may result in a loss of memory integrity. Rated high severity (CVSS 7.8)

CVE-2023-20524 HIGH
7.5 May 09

An attacker with a compromised ASP could possibly send malformed commands to an ASP on another CPU, resulting in an out

CVE-2023-20531 HIGH
7.5 Jan 11

Insufficient bound checks in the SMU may allow an attacker to update the SRAM from/to address space to an invalid value

CVE-2023-20529 HIGH
7.5 Jan 11

Insufficient bound checks in the SMU may allow an attacker to update the from/to address space to an invalid value poten

CVE-2021-26338 HIGH
7.5 Nov 16

Improper access controls in System Management Unit (SMU) may allow for an attacker to override performance control table

CVE-2021-26322 HIGH
7.5 Nov 16

Persistent platform private key may not be protected with a random IV leading to a potential “two time pad attack”. Rate

Share

CVE-2023-20533 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy