CVE-2023-20591

CRITICAL EPSS 21.6%
Published Aug 13, 20241y ago · Modified Jun 17, 20261w ago
10.0 CVSS 3.1
Critical
Find Similar
Published Aug 13, 2024 1y ago
Last Modified Jun 17, 2026 1w ago

Description

Improper re-initialization of IOMMU during the DRTM event may permit an untrusted platform configuration to persist, allowing an attacker to read or modify hypervisor memory, potentially resulting in loss of confidentiality, integrity, and availability.

CVSS Details

Base Score
10.0
Exploitability
3.9
Impact
6.0
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
Attack Vector Network
Attack Complexity Low
Privileges Required None
User Interaction None
Scope Changed
Confidentiality High
Integrity High
Availability High

Threat Intelligence

EPSS Exploit Probability
21.6% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-665

Affected Products 130

VendorProductVersionRange
amdepyc_8024pn_firmware* <genoapi_1.0.0.8
amdepyc_8024pn*any
amdepyc_8024p_firmware* <genoapi_1.0.0.8
amdepyc_8024p*any
amdepyc_8124pn_firmware* <genoapi_1.0.0.8
amdepyc_8124pn*any
amdepyc_8124p_firmware* <genoapi_1.0.0.8
amdepyc_8124p*any
amdepyc_8224pn_firmware* <genoapi_1.0.0.8
amdepyc_8224pn*any
amdepyc_8224p_firmware* <genoapi_1.0.0.8
amdepyc_8224p*any
amdepyc_8324pn_firmware* <genoapi_1.0.0.8
amdepyc_8324pn*any
amdepyc_8324p_firmware* <genoapi_1.0.0.8
amdepyc_8324p*any
amdepyc_8434pn_firmware* <genoapi_1.0.0.8
amdepyc_8434pn*any
amdepyc_8434p_firmware* <genoapi_1.0.0.8
amdepyc_8434p*any
amdepyc_8534pn_firmware* <genoapi_1.0.0.8
amdepyc_8534pn*any
amdepyc_8534p_firmware* <genoapi_1.0.0.8
amdepyc_8534p*any
amdepyc_9734_firmware* <genoapi_1.0.0.8
amdepyc_9734*any
amdepyc_9754s_firmware* <genoapi_1.0.0.8
amdepyc_9754s*any
amdepyc_9754_firmware* <genoapi_1.0.0.8
amdepyc_9754*any
amdepyc_9184x_firmware* <genoapi_1.0.0.8
amdepyc_9184x*any
amdepyc_9384x_firmware* <genoapi_1.0.0.8
amdepyc_9384x*any
amdepyc_9684x_firmware* <genoapi_1.0.0.8
amdepyc_9684x*any
amdepyc_9124_firmware* <genoapi_1.0.0.8
amdepyc_9124*any
amdepyc_9174f_firmware* <genoapi_1.0.0.8
amdepyc_9174f*any
amdepyc_9224_firmware* <genoapi_1.0.0.8
amdepyc_9224*any
amdepyc_9254_firmware* <genoapi_1.0.0.8
amdepyc_9254*any
amdepyc_9274f_firmware* <genoapi_1.0.0.8
amdepyc_9274f*any
amdepyc_9334_firmware* <genoapi_1.0.0.8
amdepyc_9334*any
amdepyc_9354_firmware* <genoapi_1.0.0.8
amdepyc_9354*any
amdepyc_9354p_firmware* <genoapi_1.0.0.8
amdepyc_9354p*any
amdepyc_9374f_firmware* <genoapi_1.0.0.8
amdepyc_9374f*any
amdepyc_9454_firmware* <genoapi_1.0.0.8
amdepyc_9454*any
amdepyc_9454p_firmware* <genoapi_1.0.0.8
amdepyc_9454p*any
amdepyc_9474f_firmware* <genoapi_1.0.0.8
amdepyc_9474f*any
amdepyc_9534_firmware* <genoapi_1.0.0.8
amdepyc_9534*any
amdepyc_9554_firmware* <genoapi_1.0.0.8
amdepyc_9554*any
amdepyc_9554p_firmware* <genoapi_1.0.0.8
amdepyc_9554p*any
amdepyc_9634_firmware* <genoapi_1.0.0.8
amdepyc_9634*any
amdepyc_9654_firmware* <genoapi_1.0.0.8
amdepyc_9654*any
amdepyc_9654p_firmware* <genoapi_1.0.0.8
amdepyc_9654p*any
amdepyc_7203_firmware* <milanpi_1.0.0.b
amdepyc_7203*any
amdepyc_7203p_firmware* <milanpi_1.0.0.b
amdepyc_7203p*any
amdepyc_72f3_firmware* <milanpi_1.0.0.b
amdepyc_72f3*any
amdepyc_7303_firmware* <milanpi_1.0.0.b
amdepyc_7303*any
amdepyc_7303p_firmware* <milanpi_1.0.0.b
amdepyc_7303p*any
amdepyc_7313_firmware* <milanpi_1.0.0.b
amdepyc_7313*any
amdepyc_7313p_firmware* <milanpi_1.0.0.b
amdepyc_7313p*any
amdepyc_7343_firmware* <milanpi_1.0.0.b
amdepyc_7343*any
amdepyc_73f3_firmware* <milanpi_1.0.0.b
amdepyc_73f3*any
amdepyc_7373x_firmware* <milanpi_1.0.0.b
amdepyc_7373x*any
amdepyc_7413_firmware* <milanpi_1.0.0.b
amdepyc_7413*any
amdepyc_7443_firmware* <milanpi_1.0.0.b
amdepyc_7443*any
amdepyc_7443p_firmware* <milanpi_1.0.0.b
amdepyc_7443p*any
amdepyc_74f3_firmware* <milanpi_1.0.0.b
amdepyc_74f3*any
amdepyc_7453_firmware* <milanpi_1.0.0.b
amdepyc_7453*any
amdepyc_7473x_firmware* <milanpi_1.0.0.b
amdepyc_7473x*any
amdepyc_7513_firmware* <milanpi_1.0.0.b
amdepyc_7513*any
amdepyc_7543_firmware* <milanpi_1.0.0.b
amdepyc_7543*any
amdepyc_7543p_firmware* <milanpi_1.0.0.b
amdepyc_7543p*any
amdepyc_75f3_firmware* <milanpi_1.0.0.b
amdepyc_75f3*any
amdepyc_7573x_firmware* <milanpi_1.0.0.b
amdepyc_7573x*any
amdepyc_7643_firmware* <milanpi_1.0.0.b
amdepyc_7643*any
amdepyc_7773x_firmware* <milanpi_1.0.0.b
amdepyc_7773x*any
amdepyc_7643p_firmware* <milanpi_1.0.0.b
amdepyc_7643p*any
amdepyc_7663_firmware* <milanpi_1.0.0.b
amdepyc_7663*any
amdepyc_7663p_firmware* <milanpi_1.0.0.b
amdepyc_7663p*any
amdepyc_7713_firmware* <milanpi_1.0.0.b
amdepyc_7713*any
amdepyc_7713p_firmware* <milanpi_1.0.0.b
amdepyc_7713p*any
amdepyc_7763_firmware* <milanpi_1.0.0.b
amdepyc_7763*any

References 1

  • amd.com https://www.amd.com/en/resources/product-security/bulletin/amd-sb-3003.html
    Vendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.