CVE-2023-20533: Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting…

high7.5CVSS 3.1

AVNACLPRNUINSUCNINAH

Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.

Affected

78 ranges· showing 25

Vendor	Product	Version range	Fixed in
amd	2nd_gen_amd_epyc_processors	—	—
amd	3rd_gen_amd_epyc_processors	—	—
amd	amd_epyc_embedded_7002	—	—
amd	amd_epyc_embedded_7003	—	—
amd	amd_ryzen_5000_series_desktop_processors_vermeer	—	—
amd	amd_ryzen_embedded_5000	—	—
amd	amd_ryzen_threadripper_3000_series_processors_castle_peak_hedt	—	—
amd	amd_ryzen_threadripper_pro_3000wx_series_processors_chagall_ws	—	—
amd	amd_ryzen_threadripper_pro_processors_castle_peak_ws_sp3	—	—
amd	epyc_7203_firmware	< milanpi_1.0.0.5	milanpi_1.0.0.5
amd	epyc_7203p_firmware	< milanpi_1.0.0.5	milanpi_1.0.0.5
amd	epyc_7232p_firmware	< romepi_1.0.0.d	romepi_1.0.0.d
amd	epyc_7252_firmware	< romepi_1.0.0.d	romepi_1.0.0.d
amd	epyc_7262_firmware	< romepi_1.0.0.d	romepi_1.0.0.d
amd	epyc_7272_firmware	< romepi_1.0.0.d	romepi_1.0.0.d
amd	epyc_7282_firmware	< romepi_1.0.0.d	romepi_1.0.0.d
amd	epyc_72f3_firmware	< milanpi_1.0.0.5	milanpi_1.0.0.5
amd	epyc_7302_firmware	< romepi_1.0.0.d	romepi_1.0.0.d
amd	epyc_7302p_firmware	< romepi_1.0.0.d	romepi_1.0.0.d
amd	epyc_7303_firmware	< milanpi_1.0.0.5	milanpi_1.0.0.5
amd	epyc_7303p_firmware	< milanpi_1.0.0.5	milanpi_1.0.0.5
amd	epyc_7313_firmware	< milanpi_1.0.0.5	milanpi_1.0.0.5
amd	epyc_7313p_firmware	< milanpi_1.0.0.5	milanpi_1.0.0.5
amd	epyc_7343_firmware	< milanpi_1.0.0.5	milanpi_1.0.0.5
amd	epyc_7352_firmware	< romepi_1.0.0.d	romepi_1.0.0.d