CVE-2023-20522
published 2023-01-11CVE-2023-20522: Insufficient input validation in ASP may allow an attacker with a malicious BIOS to potentially cause a denial of service.
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
Insufficient input validation in ASP may allow an attacker with a malicious BIOS to potentially cause a denial of service.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| amd | 2nd_gen_epyc | — | — |
| amd | 3rd_gen_epyc | — | — |
| amd | milanpi_firmware | < 1.0.0.5 | 1.0.0.5 |
| amd | romepi_firmware | < 100d | 100d |