cbcvebase.
CVE-2023-20523
published 2023-01-11

CVE-2023-20523: TOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leading to a loss of integrity or denial of service.

medium5.7CVSS 3.1
AVPACHPRNUINSUCNIHAH
TOCTOU in the ASP may allow a physical attacker to write beyond the buffer bounds, potentially leading to a loss of integrity or denial of service.

Affected

52 ranges· showing 25
VendorProductVersion rangeFixed in
amd2nd_gen_epyc
amd3rd_gen_epyc
amdepyc_7002_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7003_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7232p_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7252_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7262_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7272_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7282_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_72f3_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7302_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7302p_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7313_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7313p_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7343_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7352_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7373x_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_73f3_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7402_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7402p_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7413_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7443_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7443p_firmware< milanpi_1.0.0.5milanpi_1.0.0.5
amdepyc_7452_firmware< romepi_1.0.0.cromepi_1.0.0.c
amdepyc_7453_firmware< milanpi_1.0.0.5milanpi_1.0.0.5