cbcvebase.
CVE-2023-20563
published 2023-11-14

CVE-2023-20563: Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.

high7.8CVSS 3.1
AVLACLPRLUINSUCHIHAH
Insufficient protections in System Management Mode (SMM) code may allow an attacker to potentially enable escalation of privilege via local access.

Affected

83 ranges· showing 25
VendorProductVersion rangeFixed in
amdamd_ryzen_5000_series_processors_with_radeon_graphics_barcelo
amdamd_ryzen_6000_series_processors_with_radeon_graphics_rembrandt
amdamd_ryzen_7030_series_mobile_processors_with_radeon_graphics_barcelo-r
amdamd_ryzen_7035_series_processors_with_radeon_graphics_rembrandt-r
amdamd_ryzen_embedded_5000
amdamd_ryzen_embedded_r1000
amdamd_ryzen_embedded_r2000
amdamd_ryzen_embedded_v3000
amdryzen_3_5100_firmware< comboam4v2_1.2.0.bcomboam4v2_1.2.0.b
amdryzen_3_5125c_firmware< cezannepi-fp6_1.0.0.fcezannepi-fp6_1.0.0.f
amdryzen_3_5300g_firmware< comboam4v2_1.2.0.bcomboam4v2_1.2.0.b
amdryzen_3_5300ge_firmware< comboam4v2_1.2.0.bcomboam4v2_1.2.0.b
amdryzen_3_5400u_firmware< cezannepi-fp6_1.0.0.fcezannepi-fp6_1.0.0.f
amdryzen_3_5425u_firmware< cezannepi-fp6_1.0.0.fcezannepi-fp6_1.0.0.f
amdryzen_3_7335u_firmware< rembrandtpi-fp7_1.0.0.9rembrandtpi-fp7_1.0.0.9
amdryzen_3_pro_7330u_firmware< cezannepi-fp6_1.0.0.fcezannepi-fp6_1.0.0.f
amdryzen_3_pro_7440u_firmware< phoenixpi-fp8-fp7_pi_1.0.0.1gphoenixpi-fp8-fp7_pi_1.0.0.1g
amdryzen_5000_series_desktop_processor_with_radeon_graphics_cezanne
amdryzen_5000_series_mobile_processors_with_radeon_graphics_cezanne
amdryzen_5_5500_firmware< comboam4v2_1.2.0.bcomboam4v2_1.2.0.b
amdryzen_5_5500h_firmware< cezannepi-fp6_1.0.0.fcezannepi-fp6_1.0.0.f
amdryzen_5_5560u_firmware< cezannepi-fp6_1.0.0.fcezannepi-fp6_1.0.0.f
amdryzen_5_5600g_firmware< comboam4v2_1.2.0.bcomboam4v2_1.2.0.b
amdryzen_5_5600ge_firmware< comboam4v2_1.2.0.bcomboam4v2_1.2.0.b
amdryzen_5_5600h_firmware< cezannepi-fp6_1.0.0.fcezannepi-fp6_1.0.0.f