CVE-2023-20520
published 2023-05-09CVE-2023-20520: Improper access control settings in ASP Bootloader may allow an attacker to corrupt the return address causing a stack-based buffer overrun potentially leading…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Improper access control settings in ASP
Bootloader may allow an attacker to corrupt the return address causing a
stack-based buffer overrun potentially leading to arbitrary code execution.
Affected
66 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | 1st_gen_amd_epyc | — | — |
| amd | 2nd_gen_amd_epyc | — | — |
| amd | 3rd_gen_amd_epyc | — | — |
| amd | epyc_7232p_firmware | — | — |
| amd | epyc_7251_firmware | — | — |
| amd | epyc_7252_firmware | — | — |
| amd | epyc_7261_firmware | — | — |
| amd | epyc_7262_firmware | — | — |
| amd | epyc_7272_firmware | — | — |
| amd | epyc_7281_firmware | — | — |
| amd | epyc_7282_firmware | — | — |
| amd | epyc_72f3_firmware | — | — |
| amd | epyc_7301_firmware | — | — |
| amd | epyc_7302_firmware | — | — |
| amd | epyc_7302p_firmware | — | — |
| amd | epyc_7313_firmware | — | — |
| amd | epyc_7313p_firmware | — | — |
| amd | epyc_7343_firmware | — | — |
| amd | epyc_7351_firmware | — | — |
| amd | epyc_7351p_firmware | — | — |
| amd | epyc_7352_firmware | — | — |
| amd | epyc_7371_firmware | — | — |
| amd | epyc_7373x_firmware | — | — |
| amd | epyc_73f3_firmware | — | — |
| amd | epyc_7401_firmware | — | — |