cbcvebase.
CVE-2023-20555
published 2023-08-08

CVE-2023-20555: Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled…

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Insufficient input validation in CpmDisplayFeatureSmm may allow an attacker to corrupt SMM memory by overwriting an arbitrary bit in an attacker-controlled pointer potentially leading to arbitrary code execution in SMM.

Affected

147 ranges· showing 25
VendorProductVersion rangeFixed in
amdathlon_3000_series_desktop_processors_with_radeon_graphics_picasso
amdathlon_3000_series_mobile_processors_with_radeon_graphics_dali_dali_fp5
amdathlon_3000_series_mobile_processors_with_radeon_graphics_pollock
amdathlon_3015ce_firmware< pollockpi-ft5_1.0.0.5pollockpi-ft5_1.0.0.5
amdathlon_3015e_firmware< pollockpi-ft5_1.0.0.5pollockpi-ft5_1.0.0.5
amdathlon_gold_3150c_firmware< picassopi-fp5_1.0.0.fpicassopi-fp5_1.0.0.f
amdathlon_gold_3150g_firmware< comboam4piv1_1.0.0.acomboam4piv1_1.0.0.a
amdathlon_gold_3150g_firmware< comboam4v2_1.2.0.acomboam4v2_1.2.0.a
amdathlon_gold_3150ge_firmware< comboam4piv1_1.0.0.acomboam4piv1_1.0.0.a
amdathlon_gold_3150ge_firmware< comboam4v2_1.2.0.acomboam4v2_1.2.0.a
amdathlon_gold_3150u_firmware< picassopi-fp5_1.0.0.fpicassopi-fp5_1.0.0.f
amdathlon_gold_pro_3150g_firmware< comboam4piv1_1.0.0.acomboam4piv1_1.0.0.a
amdathlon_gold_pro_3150g_firmware< comboam4v2_1.2.0.acomboam4v2_1.2.0.a
amdathlon_gold_pro_3150ge_firmware< comboam4piv1_1.0.0.acomboam4piv1_1.0.0.a
amdathlon_gold_pro_3150ge_firmware< comboam4v2_1.2.0.acomboam4v2_1.2.0.a
amdathlon_pro_300ge_firmware< comboam4piv1_1.0.0.acomboam4piv1_1.0.0.a
amdathlon_pro_300ge_firmware< comboam4v2_1.2.0.acomboam4v2_1.2.0.a
amdathlon_pro_3045b_firmware< picassopi-fp5_1.0.0.fpicassopi-fp5_1.0.0.f
amdathlon_pro_3145b_firmware< picassopi-fp5_1.0.0.fpicassopi-fp5_1.0.0.f
amdathlon_silver_3050c_firmware< picassopi-fp5_1.0.0.fpicassopi-fp5_1.0.0.f
amdathlon_silver_3050e_firmware< picassopi-fp5_1.0.0.fpicassopi-fp5_1.0.0.f
amdathlon_silver_3050u_firmware< picassopi-fp5_1.0.0.fpicassopi-fp5_1.0.0.f
amdryzen_3000_series_desktop_processors_matisse_am4
amdryzen_3000_series_mobile_processors_with_radeon_graphics_picasso
amdryzen_3_3300_firmware< comboam4_pi_v1_1.0.0.acomboam4_pi_v1_1.0.0.a